Unrated severityNVD Advisory· Published Mar 30, 2025· Updated Mar 31, 2025

TRENDnet TEW-410APB HTTP Request httpd sub_4019A0 null pointer dereference

CVE-2025-2959

Description

A vulnerability was found in TRENDnet TEW-410APB 1.3.06b. It has been rated as problematic. Affected by this issue is the function sub_4019A0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Affected products

Trendnet/TEW-410APBllm-create2 versions
= 1.3.06b+ 1 more
- (no CPE)range: = 1.3.06b
- (no CPE)range: 1.3.06b

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

drive.google.com/file/d/1idRNkvFHyh5vOxw2VIs2wcwdVOVLuqkG/viewmitreexploit
vuldb.commitrethird-party-advisory
docs.google.com/document/d/1PcJZQ364MQxz1eUt6PLnWIQYTLNuJ5_3/editmitrerelated
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000