CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Trendnet: >> Tew-929dru Firmware Security Vulnerabilities

CVE-2025-25428

TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.

CVSS Score

8.0

EPSS Score

0.0

Published

2025-02-28

CVE-2025-25429

Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the r_name variable inside the have_same_name function on the /addschedule.htm page.

CVSS Score

4.8

EPSS Score

0.0

Published

2025-02-28

CVE-2025-25430

Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the configname parameter on the /cbi_addcert.htm page.

CVSS Score

4.8

EPSS Score

0.0

Published

2025-02-28

CVE-2025-25431

Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the The ssid key of wifi_data parameter on the /captive_portal.htm page.

CVSS Score

4.8

EPSS Score

0.0

Published

2025-02-28

Page 1

Vulnerabilities

Vulnerable Software

Trendnet: >> Tew-929dru Firmware Security Vulnerabilities

Products

Pricing

Contact Us