ГлавнаяУязвимости → CVE-2025-44649
7.5высокая

CVE-2025-44649

Описание

In the configuration file of racoon in the TRENDnet TEW-WLC100P 2.03b03, the first item of exchage_mode is set to aggressive. Aggressive mode in IKE Phase 1 exposes identity information in plaintext, is vulnerable to offline dictionary attacks, and lacks flexibility in negotiating security parameters.

Затрагиваемое ПО
Trendnet Tew-wlc100p firmwareTrendnet Tew-wlc100p
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://gist.github.com/TPCchecker/6d787c4916891f493b274b70abfad860https://www.notion.so/CVE-2025-44649-24754a1113e780a4a1d1c4cd6d3ff345