What is CVE-2021-20150?

CVE-2021-20150 is a vulnerability in Trendnet Ac2600 Tew-827dru. Published 2021-12-30.

Is CVE-2021-20150 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Trendnet Ac2600 Tew-827dru

CVE-2021-20150

Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses information via redirection from the setup wizard. Authentication can be bypassed and a user may view information as Admin by manually browsing to the setup wizard and forcing…

EPSS: 0.566 (98.2th percentile) — read the EPSS interpretation.

Affected products

N/a Trendnet Ac2600 Tew-827dru — versions 2.08B01

Public proof-of-concept exploits

20142995/nuclei-templates
ARPSyndicate/cve-scores
ARPSyndicate/cvemon
ARPSyndicate/kenzer-templates

References

www.tenable.com/security/research/tra-2021-54 (x_refsource_MISC)

Frequently asked questions

What is CVE-2021-20150?: CVE-2021-20150 is a vulnerability in Trendnet Ac2600 Tew-827dru. Published 2021-12-30.
Is CVE-2021-20150 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.