Cyber Resilience

CVE-2024-46484

CriticalRCE

Published: 29 August 2025

Published
29 August 2025
Modified
08 September 2025
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0053 67.6th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-46484 is a critical-severity OS Command Injection (CWE-78) vulnerability in Trendnet Tv-Ip410 Firmware. Its CVSS base score is 9.8 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 32.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2024-46484 is an OS command injection vulnerability (CWE-78) affecting the TRENDnet TV-IP410 camera running firmware version vA1.0R. The issue exists in the /server/cgi-bin/testserv.cgi component, which allows attackers to inject and execute arbitrary operating system commands. Published on 2025-08-29, it carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), classifying it as critical due to its potential for severe impact.

The vulnerability can be exploited by any unauthenticated attacker with network access to the device, requiring low complexity and no user interaction. Successful exploitation enables arbitrary command execution on the underlying operating system, compromising confidentiality, integrity, and availability with high impact, potentially leading to full device takeover, data exfiltration, or further network pivoting.

Mitigation guidance and related details are referenced in advisories at http://trendnet.com and a GitHub gist at https://gist.github.com/powalll/682c1b81696888fd692e595598f2ae3e, which security practitioners should review for patching or workaround instructions.

EU & UK References

Vulnerability details

TRENDnet TV-IP410 vA1.0R was discovered to contain an OS command injection vulnerability via the /server/cgi-bin/testserv.cgi component.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1059.004 Unix Shell Execution
Adversaries may abuse Unix shell commands and scripts for execution.
Why these techniques?

OS command injection in public-facing CGI endpoint directly enables remote exploitation (T1190) and arbitrary Unix shell command execution (T1059.004).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-15472Same vendor: Trendnet
CVE-2025-15471Same vendor: Trendnet
CVE-2026-7609Same vendor: Trendnet
CVE-2026-5352Same vendor: Trendnet
CVE-2026-5354Same vendor: Trendnet
CVE-2024-57590Same vendor: Trendnet
CVE-2026-5349Same vendor: Trendnet
CVE-2026-5351Same vendor: Trendnet
CVE-2026-5355Same vendor: Trendnet
CVE-2026-5353Same vendor: Trendnet

Affected Assets

trendnet
tv-ip410 firmware
a1.0r

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly prevents OS command injection by validating and sanitizing user inputs to the vulnerable /server/cgi-bin/testserv.cgi endpoint.

prevent

Remediates the specific command injection flaw in TRENDnet TV-IP410 firmware vA1.0R through timely patching as referenced in vendor advisories.

prevent

Enforces authentication and access controls on the unauthenticated CGI endpoint to block remote attackers from reaching the vulnerable component.

References