Skip to main content

TRENDnet TEW-821DAP EUVDEUVD-2026-26761

| CVE-2026-7607 HIGH
Classic Buffer Overflow (CWE-120)
2026-05-02 VulDB
8.7
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
8.7 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

8
Analysis Updated
May 02, 2026 - 08:27 vuln.today
v2 (cvss_changed)
Re-analysis Queued
May 02, 2026 - 08:22 vuln.today
cvss_changed
CVSS changed
May 02, 2026 - 08:22 NVD
8.8 (HIGH) 8.7 (HIGH)
Analysis Generated
May 02, 2026 - 08:00 vuln.today
EUVD ID Assigned
May 02, 2026 - 07:30 euvd
EUVD-2026-26761
Analysis Generated
May 02, 2026 - 07:30 vuln.today
Patch released
May 02, 2026 - 07:30 nvd
Patch available
CVE Published
May 02, 2026 - 07:00 nvd
HIGH 8.7

DescriptionCVE.org

A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function auto_update_firmware of the component Firmware Udpate. The manipulation of the argument str leads to buffer overflow. The attack may be initiated remotely. The vendor explains: "That firmware version will only work on our hardware version v1.xR. We have already EOL that product 8 years ago and are no longer selling". This vulnerability only affects products that are no longer supported by the maintainer.

AnalysisAI

Remote authenticated attackers can execute arbitrary code on TRENDnet TEW-821DAP v1.xR hardware running firmware 1.12B01 by exploiting a buffer overflow in the auto_update_firmware function during firmware update operations. The vulnerable product was end-of-lifed 8 years ago and is no longer supported by TRENDnet, making patching practically impossible for remaining deployed devices. With CVSS 8.7 (AV:N/AC:L/PR:L), this represents a critical risk for legacy installations, though real-world impact is limited by the obsolete product lifecycle and requirement for authenticated access to the firmware update interface.

Technical ContextAI

This vulnerability affects the auto_update_firmware function within the firmware update component of TRENDnet TEW-821DAP wireless access point firmware version 1.12B01, specifically hardware revision v1.xR. The root cause is CWE-120 (Buffer Copy without Checking Size of Input), where the 'str' argument passed to the auto_update_firmware function lacks proper bounds checking, allowing an attacker to write beyond allocated buffer boundaries. Buffer overflows in firmware update mechanisms are particularly dangerous because they typically execute with elevated system privileges necessary for modifying flash memory. The CPE string (cpe:2.3:a:trendnet:tew-821dap:*:*:*:*:*:*:*:*) identifies this as an application-level vulnerability in the web management interface or update service, rather than the underlying Linux kernel or bootloader. Firmware update functions often accept file uploads or network-delivered payloads, making them attractive targets for remote exploitation when input validation is insufficient.

RemediationAI

No vendor-released patch will be issued as TRENDnet end-of-lifed this hardware revision 8 years ago and explicitly states they no longer support it. Organizations still operating TEW-821DAP v1.xR devices must implement compensating controls: (1) Immediately replace affected devices with current-generation supported hardware-this is the only complete remediation path. (2) If replacement is not immediately feasible, disable remote management access to the web interface and restrict firmware update functionality to physically isolated management VLANs accessible only from trusted administrative workstations (trade-off: legitimate firmware updates become operationally more complex). (3) Implement strong authentication on the device administrative interface and audit all login attempts for unauthorized access patterns (trade-off: does not prevent exploitation by compromised credentials). (4) Deploy network-level access controls (firewall rules, 802.1X port security) to prevent untrusted devices from reaching the access point's management interface (trade-off: adds network complexity and may not protect against insider threats or lateral movement). (5) Monitor network traffic from affected devices for unusual outbound connections indicative of compromise. Understand that these compensating controls only reduce attack surface-they do not eliminate the vulnerability. Budget and procurement processes should prioritize hardware replacement for any mission-critical deployments. Reference documentation at https://github.com/IOTRes/IOT_Firmware_Update/blob/main/Trendnet/TEW-821DAP_BO.md and https://vuldb.com/vuln/360564 for technical details.

Share

EUVD-2026-26761 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy