Login Sign Up

CVE-2025-2959

6.5 MEDIUM
Denial of Service

📋 TL;DR

This vulnerability in TRENDnet TEW-410APB wireless access points allows local network attackers to cause a denial of service via null pointer dereference in the HTTP request handler. The exploit can crash the httpd service, disrupting web management functionality. Only devices on the local network can exploit this vulnerability.

💻 Affected Systems

Products:
  • TRENDnet TEW-410APB Wireless Access Point
Versions: 1.3.06b
Operating Systems: Embedded Linux
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects devices with web management interface enabled (default configuration).

📦 What is this software?

Tew 410apb Firmware by Trendnet

View all CVEs affecting Tew 410apb Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete denial of service for the web management interface, requiring physical device restart to restore functionality.

🟠

Likely Case

Temporary disruption of web management interface until service restarts or device reboots.

🟢

If Mitigated

Minimal impact with proper network segmentation isolating the device from untrusted internal networks.

🌐 Internet-Facing: LOW - The vulnerability requires local network access and cannot be exploited from the internet.
🏢 Internal Only: MEDIUM - Local network attackers can disrupt management functionality but cannot gain code execution or access sensitive data.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit code has been publicly disclosed and requires no authentication. Attack must originate from the local network.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Vendor did not respond to disclosure. Consider replacing device or implementing workarounds.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate the access point on a dedicated VLAN to limit attack surface to trusted devices only.

Disable Web Management

all

Disable the HTTP management interface if not required for operations.

🧯 If You Can't Patch

  • Replace the device with a supported model from a responsive vendor
  • Implement strict network access controls to limit which devices can communicate with the access point

🔍 How to Verify

Check if Vulnerable:

Check device firmware version via web interface at http://[device-ip]/status.asp or via SSH if enabled.

Check Version:

curl -s http://[device-ip]/status.asp | grep 'Firmware Version'

Verify Fix Applied:

No fix available to verify. Monitor for vendor firmware updates.

📡 Detection & Monitoring

Log Indicators:

  • HTTP service crashes
  • Repeated httpd process restarts in system logs

Network Indicators:

  • Unusual HTTP requests to device management interface from internal hosts
  • Sudden loss of HTTP connectivity to device management

SIEM Query:

source="access_point_logs" AND ("httpd crashed" OR "segmentation fault" OR "null pointer")

📊 Metadata

CVE ID: CVE-2025-2959
CVSS v3 Score: 6.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-404
EPSS Score: 0.7% exploit probability (71.5th percentile)
Published: March 30, 2025
Last Updated: April 15, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-2959, you might also want to check these:

CVE-2025-38385 7.8

This CVE describes a kernel warning triggered during USB device disconnection in the Linux kernel's ...

Same vulnerability type (CWE-404)
CVE-2022-23033 7.8

This Xen hypervisor vulnerability on ARM systems allows guest virtual machines to retain access to m...

Same vulnerability type (CWE-404)
CVE-2021-0984 7.8

This vulnerability in Android 12 allows local privilege escalation without user interaction. An inco...

Same vulnerability type (CWE-404)