CVE-2026-7611— TRENDnet TEW-821DAP Firmware Update cameo_dev.sh platform_do_upgrade_cameo_dev data authenticity

CVSS 3.7 · Low EPSS 0.03% · P9 Updated May 05, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-7611

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

TRENDnet TEW-821DAP Firmware Update cameo_dev.sh platform_do_upgrade_cameo_dev data authenticity

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability was found in TRENDnet TEW-821DAP up to 1.12B01. This impacts the function platform_do_upgrade_cameo_dev of the file cameo_dev.sh of the component Firmware Update Handler. Performing a manipulation results in insufficient verification of data authenticity. The attack is possible to be carried out remotely. The complexity of an attack is rather high. The exploitability is said to be difficult. The vendor explains: "That firmware version will only work on our hardware version v1.xR. We have already EOL that product 8 years ago and are no longer selling". This vulnerability only affects products that are no longer supported by the maintainer.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

对数据真实性的验证不充分

Source: NVD (National Vulnerability Database)

Vulnerability Title

TRENDnet TEW-821DAP 数据伪造问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

TRENDnet TEW-821DAP是美国趋势网络（TRENDnet）公司的一款无线接入点。 TRENDnet TEW-821DAP 1.12B01及之前版本存在数据伪造问题漏洞，该漏洞源于固件更新处理组件中cameo_dev.sh文件的platform_do_upgrade_cameo_dev函数存在数据真实性验证不足，可能导致远程攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
TRENDnet	TEW-821DAP	1.12B01	`cpe:2.3:o:trendnet:tew-821dap_firmware::::::::`

II. Public POCs for CVE-2026-7611

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-7611

请登录查看更多情报信息。

Same Patch Batch · TRENDnet · 2026-05-02 · 6 CVEs total

CVE-2026-7607	8.8 HIGH	TRENDnet TEW-821DAP Firmware Udpate auto_update_firmware buffer overflow
CVE-2026-7609	6.3 MEDIUM	TRENDnet TEW-821DAP Firmware Udpate diagnostic tools_diagnostic os command injection
CVE-2026-7608	5.5 MEDIUM	TRENDnet TEW-821DAP tools_diagnostic os command injection
CVE-2026-7606	3.7 LOW	TRENDnet TEW-821DAP Firmware Update new_gui_update_firmware data authenticity
CVE-2026-7610	3.7 LOW	TRENDnet TEW-821DAP Firmware Update ssi cleartext transmission

IV. Related Vulnerabilities

Same product: TEW-821DAP

Same vendor: TRENDnet

Same weakness: CWE-345

V. Comments for CVE-2026-7611

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-7611— TRENDnet TEW-821DAP Firmware Update cameo_dev.sh platform_do_upgrade_cameo_dev data authenticity

I. Basic Information for CVE-2026-7611

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-7611

III. Intelligence Information for CVE-2026-7611

Same Patch Batch · TRENDnet · 2026-05-02 · 6 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-7611

Leave a comment