Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Tv\-Ip1314pi_firmware
(Trendnet)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-01-09 | CVE-2023-49235 | An issue was discovered in libremote_dbg.so on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Filtering of debug information is mishandled during use of popen. Consequently, an attacker can bypass validation and execute a shell command. | Tv\-Ip1314pi_firmware | 9.8 | ||
| 2024-01-09 | CVE-2023-49236 | A stack-based buffer overflow was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices, leading to arbitrary command execution. This occurs because of lack of length validation during an sscanf of a user-entered scale field in the RTSP playback function of davinci. | Tv\-Ip1314pi_firmware | 9.8 | ||
| 2024-01-09 | CVE-2023-49237 | An issue was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Command injection can occur because the system function is used by davinci to unpack language packs without strict filtering of URL strings. | Tv\-Ip1314pi_firmware | 9.8 |