8
CVE-2025-25428
- EPSS 0.04%
- Veröffentlicht 28.02.2025 19:15:36
- Zuletzt bearbeitet 21.05.2025 16:07:18
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Trendnet ≫ Tew-929dru Firmware Version1.0.0.10
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.04% | 0.114 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 8 | 2.1 | 5.9 |
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-259 Use of Hard-coded Password
The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.