CVE-2025-25431 - CERT CVE

  1. CVE-2025-25431

ID CVE-2025-25431
Sažetak Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the The ssid key of wifi_data parameter on the /captive_portal.htm page.
Reference
CVSS
Base: 4.8
Impact: 2.7
Exploitability:1.7
Pristup
VektorSloženostAutentikacija
ADJACENT_NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW NONE
CVSS vektor CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Zadnje važnije ažuriranje 04-03-2025 - 16:15
Objavljeno 28-02-2025 - 18:15