{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-0637","assignerOrgId":"1af790b2-7ee1-4545-860a-a788eba489b5","state":"PUBLISHED","assignerShortName":"VulDB","dateReserved":"2023-02-02T08:00:05.389Z","datePublished":"2023-02-02T08:00:48.824Z","dateUpdated":"2025-03-26T18:52:44.644Z"},"containers":{"cna":{"providerMetadata":{"orgId":"1af790b2-7ee1-4545-860a-a788eba489b5","shortName":"VulDB","dateUpdated":"2023-10-20T19:56:41.428Z"},"title":"TRENDnet TEW-811DRU Web Management Interface wan.asp memory corruption","problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-119","lang":"en","description":"CWE-119 Memory Corruption"}]}],"affected":[{"vendor":"TRENDnet","product":"TEW-811DRU","versions":[{"version":"1.0.10.0","status":"affected"}],"modules":["Web Management Interface"]}],"descriptions":[{"lang":"en","value":"A vulnerability, which was classified as critical, was found in TRENDnet TEW-811DRU 1.0.10.0. This affects an unknown part of the file wan.asp of the component Web Management Interface. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-220017 was assigned to this vulnerability."},{"lang":"de","value":"Es wurde eine kritische Schwachstelle in TRENDnet TEW-811DRU 1.0.10.0 gefunden. Es geht dabei um eine nicht klar definierte Funktion der Datei wan.asp der Komponente Web Management Interface. Mittels Manipulieren mit unbekannten Daten kann eine memory corruption-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk passieren. Der Exploit steht zur öffentlichen Verfügung."}],"metrics":[{"cvssV3_1":{"version":"3.1","baseScore":6.5,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseSeverity":"MEDIUM"}},{"cvssV3_0":{"version":"3.0","baseScore":6.5,"vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseSeverity":"MEDIUM"}},{"cvssV2_0":{"version":"2.0","baseScore":6.8,"vectorString":"AV:N/AC:L/Au:S/C:N/I:N/A:C"}}],"timeline":[{"time":"2023-02-02T00:00:00.000Z","lang":"en","value":"Advisory disclosed"},{"time":"2023-02-02T00:00:00.000Z","lang":"en","value":"CVE reserved"},{"time":"2023-02-02T01:00:00.000Z","lang":"en","value":"VulDB entry created"},{"time":"2023-03-01T16:32:57.000Z","lang":"en","value":"VulDB entry last update"}],"credits":[{"lang":"en","value":"leetsun (VulDB User)","type":"analyst"}],"references":[{"url":"https://vuldb.com/?id.220017","tags":["vdb-entry","technical-description","exploit"]},{"url":"https://vuldb.com/?ctiid.220017","tags":["signature"]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T05:17:50.325Z"},"title":"CVE Program Container","references":[{"url":"https://vuldb.com/?id.220017","tags":["vdb-entry","technical-description","exploit","x_transferred"]},{"url":"https://vuldb.com/?ctiid.220017","tags":["signature","x_transferred"]}]},{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-03-26T18:52:35.362391Z","id":"CVE-2023-0637","options":[{"Exploitation":"poc"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-03-26T18:52:44.644Z"}}]}}