Vulnerability Details CVE-2025-44647
In TRENDnet TEW-WLC100P 2.03b03, the i_dont_care_about_security_and_use_aggressive_mode_psk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.7%
CVSS Severity
CVSS v3 Score 7.3
Products affected by CVE-2025-44647
-
cpe:2.3:h:trendnet:tew-wlc100p:-
-
cpe:2.3:o:trendnet:tew-wlc100p_firmware:2.03b03