CVE-2026-7610

LOW 3.7

TRENDnet TEW-821DAP Firmware Update ssi cleartext transmission

CVSS Score

3.7

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability has been found in TRENDnet TEW-821DAP 1.12B01. This affects an unknown function of the file /www/cgi/ssi of the component Firmware Update. Such manipulation leads to cleartext transmission of sensitive information. The attack can be executed remotely. This attack is characterized by high complexity. The exploitability is reported as difficult. The exploit has been disclosed to the public and may be used. The vendor explains: "That firmware version will only work on our hardware version v1.xR. We have already EOL that product 8 years ago and are no longer selling". This vulnerability only affects products that are no longer supported by the maintainer.

CWE	CWE-319 CWE-310
Vendor	trendnet
Product	tew-821dap
Published	May 2, 2026

Stay Ahead of the Next One

Get instant alerts for trendnet tew-821dap

Be the first to know when new low vulnerabilities affecting trendnet tew-821dap are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

TRENDnet / TEW-821DAP

1.12B01

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/360567 vuldb.com: https://vuldb.com/vuln/360567/cti vuldb.com: https://vuldb.com/submit/806217 github.com: https://github.com/IOTRes/IOT_Firmware_Update/blob/main/Trendnet/TEW-821DAP_Down.md

Credits

🔍 IOT_Res (VulDB User) VulDB CNA Team