skip to main content
TEW-651BR hardware version V2.3R, TEW-652BRP hardware version V3.0R, and TEW-652BRU hardware version V1.0R Wi-Fi Routers possible cross-site scripting (XSS) vulnerability

CVE ID: CVE-2024-51187, CVE-2024-51188, CVE-2024-51189, CVE-2024-51190

TRENDnet is aware of a possible cross-site scripting (XSS) vulnerability in a few of the configuration setup pages involving wi-fi router TEW-651BR hardware version V2.3R (firmware 2.04B1), TEW-652BRP hardware version V3.0R (firmware 3.04B01), and TEW-652BRU hardware version V1.0R (firmware 1.00b12); however, these products have reached their End of Life (EOL) and End of Support, and TRENDnet is unable to verify the vulnerability or provide additional support.

TRENDnet recommends customer to retire these products to prevent risk of devices possibly connected to it.

REVISION:11-12-2024 initial release