CVE-2025-2959
TRENDnet TEW-410APB HTTP Request httpd sub_4019A0 null pointer dereference
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
TRENDnet TEW-410APB HTTP Request httpd sub_4019A0 null pointer dereference
A vulnerability was found in TRENDnet TEW-410APB 1.3.06b. It has been rated as problematic. Affected by this issue is the function sub_4019A0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Eine problematische Schwachstelle wurde in TRENDnet TEW-410APB 1.3.06b ausgemacht. Dies betrifft die Funktion sub_4019A0 der Datei /usr/sbin/httpd der Komponente HTTP Request Handler. Durch das Manipulieren mit unbekannten Daten kann eine null pointer dereference-Schwachstelle ausgenutzt werden. Der Angriff kann im lokalen Netzwerk passieren. Der Exploit steht zur öffentlichen Verfügung.
| 2025-03-29: | Advisory disclosed |
| 2025-03-29: | VulDB entry created |
| 2025-03-29: | VulDB entry last update |
zhongwei gu (VulDB User)
vuldb.com/?id.302012 (VDB-302012 | TRENDnet TEW-410APB HTTP Request httpd sub_4019A0 null pointer dereference)
vuldb.com/?ctiid.302012 (VDB-302012 | CTI Indicators (IOB, IOC, IOA))
vuldb.com/?submit.521725 (Submit #521725 | TRENDnet wi-fi access point firmware_tew_410apbplus_1.3.06b NULL Pointer Dereference)
docs.google.com/.../d/1PcJZQ364MQxz1eUt6PLnWIQYTLNuJ5_3/edit
drive.google.com/...Oxw2VIs2wcwdVOVLuqkG/view?usp=drive_link
Support options
