Trendnet Security Vulnerabilities (CVEs)

Track 43 security vulnerabilities affecting Trendnet products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

12 Critical

24 High

7 Medium

Sort by:

🔔 Get Alerts for Trendnet

CVE-2025-15472 7.2

This vulnerability allows remote attackers to execute arbitrary operating system commands on TRENDnet TEW-811DRU routers by manipulating the DeviceURL...

Jan 7, 2026

CVE-2025-15471 9.8

This CVE describes a remote command injection vulnerability in TRENDnet TEW-713RE routers. Attackers can execute arbitrary operating system commands b...

Jan 7, 2026

CVE-2025-15139 6.3

This CVE describes a command injection vulnerability in TRENDnet TEW-822DRE routers that allows remote attackers to execute arbitrary commands on affe...

Dec 28, 2025

CVE-2025-15137 8.8

This vulnerability allows remote attackers to execute arbitrary commands on TRENDnet TEW-800MB routers through command injection in the NTPSyncWithHos...

Dec 28, 2025

CVE-2025-15136 8.8

This vulnerability allows remote attackers to execute arbitrary commands on TRENDnet TEW-800MB routers by injecting malicious commands through the man...

Dec 28, 2025

CVE-2025-65202 8.0

This vulnerability allows authenticated attackers to execute arbitrary operating system commands with root privileges on TRENDnet TEW-657BRM routers. ...

Nov 26, 2025

CVE-2024-46484 9.8

This vulnerability allows remote attackers to execute arbitrary operating system commands on TRENDnet TV-IP410 vA1.0R security cameras via the /server...

Aug 29, 2025

CVE-2025-44649 7.5

This vulnerability affects TRENDnet TEW-WLC100P wireless LAN controllers configured with racoon IKE daemon using aggressive mode in Phase 1. It allows...

Jul 21, 2025

CVE-2025-44651 7.5

This vulnerability in TRENDnet TPL-430AP access points allows denial-of-service attacks when the USERLIMIT_GLOBAL option is set to 0 in bftpd configur...

Jul 21, 2025

CVE-2025-44647 7.3

This vulnerability allows attackers to conduct offline brute-force attacks against the TRENDnet TEW-WLC100P wireless LAN controller's VPN configuratio...

Jul 21, 2025

CVE-2025-2959 6.5

This vulnerability in TRENDnet TEW-410APB wireless access points allows local network attackers to cause a denial of service via null pointer derefere...

Mar 30, 2025

CVE-2025-25428 8.0

This vulnerability allows attackers to gain root access to TRENDnet TEW-929DRU routers using a hardcoded password. Anyone using the affected router ve...

Feb 28, 2025

CVE-2025-25429 4.8

This stored cross-site scripting (XSS) vulnerability in Trendnet TEW-929DRU routers allows attackers to inject malicious scripts into the device's web...

Feb 28, 2025

CVE-2025-25430 4.8

This CVE describes a stored cross-site scripting (XSS) vulnerability in Trendnet TEW-929DRU routers. Attackers can inject malicious scripts via the co...

Feb 28, 2025

CVE-2025-25523 5.9

A buffer overflow vulnerability in Trendnet TEG-40128 Web Smart Switch allows attackers to execute arbitrary code by exploiting insufficient input val...

Feb 11, 2025

CVE-2024-57590 9.8

TRENDnet TEW-632BRP routers have a critical OS command injection vulnerability in the ntp_sync.cgi interface that allows remote attackers to execute a...

Jan 27, 2025

CVE-2024-51189 4.8

This vulnerability allows attackers to inject malicious scripts via the macList_Name_1.1.1.0.0 parameter on the /filters.htm page of affected TRENDnet...

Nov 11, 2024

CVE-2024-51187 4.8

This CVE describes a stored cross-site scripting (XSS) vulnerability in specific TRENDnet router models. Attackers can inject malicious scripts into t...

Nov 11, 2024

CVE-2024-50667 9.8

This vulnerability allows remote attackers to execute arbitrary code on Trendnet TEW-820AP routers via stack overflow in the boa HTTP daemon when proc...

Nov 11, 2024

CVE-2024-37641 8.8

This vulnerability allows remote attackers to execute arbitrary code on TRENDnet TEW-814DAP wireless access points via a stack overflow in the formNew...

Jun 14, 2024

CVE-2024-37642 9.1

This vulnerability allows remote attackers to execute arbitrary commands on TRENDnet TEW-814DAP wireless access points by injecting malicious commands...

Jun 14, 2024

CVE-2024-37645 8.8

This vulnerability allows remote attackers to execute arbitrary code on TRENDnet TEW-814DAP wireless access points by exploiting a stack overflow in t...

Jun 14, 2024

CVE-2024-37644 8.8

TRENDnet TEW-814DAP wireless access points contain a hardcoded root password in the /etc/shadow.sample file, allowing attackers to gain complete admin...

Jun 14, 2024

CVE-2024-36728 8.1

TRENDnet TEW-827DRU routers contain a stack-based buffer overflow vulnerability in the ssi binary. Authenticated attackers can exploit this by sending...

Jun 3, 2024

CVE-2024-28354 10.0

This is a critical command injection vulnerability in TRENDnet TEW-827DRU routers that allows remote attackers to execute arbitrary commands with root...

Mar 15, 2024

CVE-2024-0920 7.2

This critical vulnerability in TRENDnet TEW-822DRE routers allows remote attackers to execute arbitrary commands via command injection in the ping fun...

Jan 26, 2024

CVE-2024-0918 7.2

This critical vulnerability in TRENDnet TEW-800MB routers allows remote attackers to execute arbitrary operating system commands by manipulating the D...

Jan 26, 2024

CVE-2023-0638 7.2

This critical vulnerability in TRENDnet TEW-811DRU routers allows remote attackers to execute arbitrary commands through the web interface. Attackers ...

Feb 2, 2023

CVE-2023-0640 7.2

This critical vulnerability in TRENDnet TEW-652BRP routers allows remote attackers to execute arbitrary commands via the web interface's ping.ccp file...

Feb 2, 2023

CVE-2022-30329 9.8

This CVE describes an OS command injection vulnerability in TRENDnet TEW-831DR routers that allows authenticated attackers to execute arbitrary shell ...

Jun 16, 2022

CVE-2021-33315 9.8

CVE-2021-33315 is a critical integer underflow vulnerability in TRENDnet TI-PG1284i switches that allows remote attackers to trigger buffer overflow o...

May 11, 2022

CVE-2021-33317 7.5

This vulnerability allows remote attackers to crash the LLDP process on TRENDnet TI-PG1284i switches by sending specially crafted LLDP packets that tr...

May 11, 2022

CVE-2021-20160 8.8

This CVE describes a command injection vulnerability in Trendnet AC2600 routers that allows attackers to execute arbitrary commands as root by injecti...

Dec 30, 2021

CVE-2021-20165 8.8

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in Trendnet AC2600 TEW-827DRU routers. Attackers can trick authenticated users in...

Dec 30, 2021

CVE-2021-20149 9.8

This vulnerability allows attackers to bypass IPv4 firewall rules and access all services on Trendnet AC2600 routers via IPv6 WAN interface. It affect...

Dec 30, 2021

CVE-2021-20151 10.0

This vulnerability allows session hijacking on Trendnet AC2600 routers by exploiting IP-based session management instead of proper token verification....

Dec 30, 2021

CVE-2021-20154 7.5

Trendnet AC2600 TEW-827DRU routers transmit sensitive information like passwords in cleartext because HTTPS is disabled by default. This affects users...

Dec 30, 2021

CVE-2021-20155 9.8

Trendnet AC2600 TEW-827DRU routers use hardcoded credentials ('12345678') to encrypt configuration backups. This allows attackers to decrypt and poten...

Dec 30, 2021

CVE-2021-20157 7.5

This vulnerability allows unauthenticated attackers to force affected devices to reboot by exploiting a hidden administrative command. It affects Dray...

Dec 30, 2021

CVE-2021-20158 9.8

This vulnerability allows unauthenticated attackers to change the administrator password on Trendnet AC2600 TEW-827DRU routers. Attackers can exploit ...

Dec 30, 2021

CVE-2021-28842 7.5

A null pointer dereference vulnerability in TRENDnet wireless access points allows remote attackers to cause denial of service by sending a specially ...

Aug 10, 2021

CVE-2021-28844 7.5

This vulnerability allows remote attackers to cause a denial-of-service (DoS) condition by sending a specially crafted POST request to the apply_cgi e...

Aug 10, 2021

CVE-2021-32424 8.8

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in TrendNet TW100-S4W1CA routers. An attacker can trick an authenticated user int...

Jun 17, 2021

Why Monitor Trendnet Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 43+ known vulnerabilities affecting Trendnet products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Trendnet packages in under 60 seconds. No agents required - completely agentless scanning that works across Trendnet deployments.

Free vulnerability database: Access detailed information about every Trendnet CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Trendnet CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Trendnet CVEs Free