Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
8DescriptionCVE.org
A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function auto_update_firmware of the component Firmware Udpate. The manipulation of the argument str leads to buffer overflow. The attack may be initiated remotely. The vendor explains: "That firmware version will only work on our hardware version v1.xR. We have already EOL that product 8 years ago and are no longer selling". This vulnerability only affects products that are no longer supported by the maintainer.
AnalysisAI
Remote authenticated attackers can execute arbitrary code on TRENDnet TEW-821DAP v1.xR hardware running firmware 1.12B01 by exploiting a buffer overflow in the auto_update_firmware function during firmware update operations. The vulnerable product was end-of-lifed 8 years ago and is no longer supported by TRENDnet, making patching practically impossible for remaining deployed devices. With CVSS 8.7 (AV:N/AC:L/PR:L), this represents a critical risk for legacy installations, though real-world impact is limited by the obsolete product lifecycle and requirement for authenticated access to the firmware update interface.
Technical ContextAI
This vulnerability affects the auto_update_firmware function within the firmware update component of TRENDnet TEW-821DAP wireless access point firmware version 1.12B01, specifically hardware revision v1.xR. The root cause is CWE-120 (Buffer Copy without Checking Size of Input), where the 'str' argument passed to the auto_update_firmware function lacks proper bounds checking, allowing an attacker to write beyond allocated buffer boundaries. Buffer overflows in firmware update mechanisms are particularly dangerous because they typically execute with elevated system privileges necessary for modifying flash memory. The CPE string (cpe:2.3:a:trendnet:tew-821dap:*:*:*:*:*:*:*:*) identifies this as an application-level vulnerability in the web management interface or update service, rather than the underlying Linux kernel or bootloader. Firmware update functions often accept file uploads or network-delivered payloads, making them attractive targets for remote exploitation when input validation is insufficient.
RemediationAI
No vendor-released patch will be issued as TRENDnet end-of-lifed this hardware revision 8 years ago and explicitly states they no longer support it. Organizations still operating TEW-821DAP v1.xR devices must implement compensating controls: (1) Immediately replace affected devices with current-generation supported hardware-this is the only complete remediation path. (2) If replacement is not immediately feasible, disable remote management access to the web interface and restrict firmware update functionality to physically isolated management VLANs accessible only from trusted administrative workstations (trade-off: legitimate firmware updates become operationally more complex). (3) Implement strong authentication on the device administrative interface and audit all login attempts for unauthorized access patterns (trade-off: does not prevent exploitation by compromised credentials). (4) Deploy network-level access controls (firewall rules, 802.1X port security) to prevent untrusted devices from reaching the access point's management interface (trade-off: adds network complexity and may not protect against insider threats or lateral movement). (5) Monitor network traffic from affected devices for unusual outbound connections indicative of compromise. Understand that these compensating controls only reduce attack surface-they do not eliminate the vulnerability. Budget and procurement processes should prioritize hardware replacement for any mission-critical deployments. Reference documentation at https://github.com/IOTRes/IOT_Firmware_Update/blob/main/Trendnet/TEW-821DAP_BO.md and https://vuldb.com/vuln/360564 for technical details.
More in Tew 821Dap
View allBuffer overflow in the TRENDnet TEW-821DAP (firmware 1.12B01) wireless access point lets an authenticated remote attacke
Buffer overflow in the TRENDnet TEW-821DAP (v1.0R, firmware 1.12B01) dual-band access point lets an authenticated remote
Insufficient verification of firmware authenticity in TRENDnet TEW-821DAP up to version 1.12B01 allows remote attackers
Insufficient verification of data authenticity in the firmware update handler of TRENDnet TEW-821DAP 1.12B01 allows remo
OS command injection in TRENDnet TEW-821DAP firmware up to version 1.12B01 allows authenticated remote attackers to exec
OS command injection in TRENDnet TEW-821DAP up to firmware version 1.12B01 allows authenticated local attackers to execu
OS command injection in TRENDnet TEW-821DAP firmware 1.11B03 allows a network-adjacent authenticated attacker to execute
OS command injection in the TRENDnet TEW-821DAP 1.11B03 wireless access point allows authenticated remote attackers to e
TRENDnet TEW-821DAP firmware version 1.12B01 transmits sensitive information in cleartext via the /www/cgi/ssi endpoint
Same weakness CWE-120 – Classic Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-26761