CVE Catalog

CVE-2024-46484

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
1.08%

61th percentile - higher than 61% of all known CVEs

Summary

TRENDnet TV-IP410 camera firmware vA1.0R contains an OS command injection vulnerability in the /server/cgi-bin/testserv.cgi component.

Risk Assessment

An attacker can remotely execute arbitrary system commands on the device, leading to full compromise and potential inclusion in a botnet.

Recommendation

Immediately update the camera firmware to the latest version or disable access to the CGI interface if not required.

Original NVD description (English source)

TRENDnet TV-IP410 vA1.0R was discovered to contain an OS command injection vulnerability via the /server/cgi-bin/testserv.cgi component.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS