CVE-2025-8758

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-822DRE version FW103B02

Description: A vulnerability exists in TRENDnet TEW-822DRE FW103B02, affecting an unknown part of the vsftpd component. The issue results in a least privilege violation. Local access is required for exploitation, and the attack complexity is high. The exploit for this issue has been publicly disclosed. The vendor was informed about the disclosure but did not respond.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

LPE

Incorrect Privilege Assignment

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-266CWE-272

Related Identifiers

BDU:2025-09645

CVE-2025-8758

Affected Products

Trendnet Tew-822Dre

Vsftpd

CVE-2025-8758

Weakness Enumeration

Related Identifiers

Affected Products

References · 9