CVE-2025-44647

High CVSS: 7.3

In TRENDnet TEW-WLC100P 2.03b03, the i_dont_care_about_security_and_use_aggressive_mode_psk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK.

Vendor

Trendnet

Product

Tew-wlc100p Firmware

CWE

CWE-1188

Yayın Tarihi

2025-07-21 16:15:28

Güncelleme

2025-08-07 17:55:29

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-1188 Tew-wlc100p Firmware HIGH Trendnet 2025

Referanslar

http://tew-wlc100p.com https://gist.github.com/TPCchecker/18c32439ed13feaed99f8229d1749892 https://www.notion.so/CVE-2025-44647-24754a1113e780b0a130d4439861bf3c

Benzer Kayıtlar

High

CVE-2026-5349

A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected element is the function add_apcdb of the file…

High

CVE-2025-15472

A flaw has been found in TRENDnet TEW-811DRU 1.0.2.0. This affects the function setDeviceURL of the file uapply.cgi of…

High

CVE-2025-15471

A vulnerability was detected in TRENDnet TEW-713RE 1.02. The impacted element is an unknown function of the file /goform…

Medium

CVE-2025-15139

A vulnerability has been found in TRENDnet TEW-822DRE 1.00B21/1.01B06. This affects the function sub_43ACF4 of the file…

High

CVE-2025-15137

A vulnerability was detected in TRENDnet TEW-800MB 1.0.1.0. Affected by this vulnerability is the function sub_F934 of…

High

CVE-2025-15136

A security vulnerability has been detected in TRENDnet TEW-800MB 1.0.1.0. Affected is the function do_setWizard_asp of t…