PT-2025-30306 · Trendnet · Trendnet Tew-Wlc100P

Tpcchecker

Published

2025-07-21

Updated

2025-08-01

CVE-2025-44649

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-WLC100P version 2.03b03

Description The configuration of racoon within the device sets the exchage mode to aggressive. Utilizing aggressive mode in IKE Phase 1 results in the exposure of identity information in plaintext, making the system susceptible to offline dictionary attacks and limiting the negotiation of security parameters.

Recommendations Modify the configuration file to change the exchage mode setting from aggressive to a more secure option.

Fix

Cleartext Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-312

Related Identifiers

CVE-2025-44649

Affected Products

Trendnet Tew-Wlc100P

PT-2025-30306 · Trendnet · Trendnet Tew-Wlc100P

CVE-2025-44649

Weakness Enumeration

Related Identifiers

Affected Products

References · 8