CVE-2025-8758 | TRENDnet TEW-822DRE FW103B02 vsftpd least privilege violation

Inserito da Angelo Barbosa | Ago 8, 2025 | CVE

A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation.

This vulnerability is uniquely identified as CVE-2025-8758. Attacking locally is a requirement. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-8758 | TRENDnet TEW-822DRE FW103B02 vsftpd least privilege violation

Post correlati

CVE-2024-53991 | Discourse FileStore::LocalStore information disclosure (GHSA-567m-82f6-56rv)

CVE-2024-50207 | Linux Kernel up to 6.11.5 ring-buffer ring_buffer_subbuf_order_set buffer overflow (a569290525a0/09661f75e75c)

CVE-2024-47723 | Linux Kernel up to 6.11.1 dbNextAG/diAlloc out-of-bounds

CVE-2024-38493 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.7 PAM UI Web Interface cross site scripting