CVEs-PoC/2021/CVE-2021-20155.md

### [CVE-2021-20155](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20155)
![](https://img.shields.io/static/v1?label=Product&message=Trendnet%20AC2600%20TEW-827DRU&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=2.08B01%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Hardcoded%20Credentials&color=brightgreen)

### Description

Trendnet AC2600 TEW-827DRU version 2.08B01 makes use of hardcoded credentials. It is possible to backup and restore device configurations via the management web interface. These devices are encrypted using a hardcoded password of "12345678".

### POC

#### Reference
- https://www.tenable.com/security/research/tra-2021-54

#### Github
- https://github.com/20142995/nuclei-templates
- https://github.com/cyb3r-w0lf/nuclei-template-collection