TRENDnet TEW-821DAP OS Command Injection Vulnerability

An OS command injection vulnerability has been identified in the TRENDnet TEW-821DAP access point, affecting firmware versions prior to 1.12B01. The issue arises in the 'tools_diagnostic' function, where user-supplied IP addresses are improperly sanitized before being used in a ping command. This flaw allows attackers to inject malicious commands that could be executed on the device.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the affected device, which could lead to unauthorized access or control over the device. Additionally, such exploitation could cause a denial-of-service condition.

Reproduction

To reproduce this vulnerability, send a POST request to the 'tools_diagnostic' endpoint with an injected payload in the 'ip_addr' parameter. The injected command will be executed on the device, and the response can be checked in the 'diagnostic.xml' file.