TRENDnet TV-IP410 OS Command Injection Vulnerability

Vulnerability

An OS command injection vulnerability has been identified in the TRENDnet TV-IP410 camera, specifically in version A1.0R. The issue arises in the web server component used for camera configuration and testing, through a vulnerable binary located at /server/cgi-bin/testserv.cgi. This vulnerability allows remote attackers to inject and execute arbitrary commands on the operating system.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the device's operating system.

Added: Aug 29, 2025, 8:21 PM

Updated: Aug 29, 2025, 8:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.7

remediation

0.0

relevance

0.4

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.7

remediation

0.0

relevance

0.4

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TRENDnet TV-IP410 OS Command Injection Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating