CVE-2025-2958 TRENDnet TEW-818DRU HTTP Request httpd denial of service

A vulnerability was found in TRENDnet TEW-818DRU 1.0.14.6. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to denial of service. The attack needs to be done...

CVE-2025-2958

CVE-2025-2958 affects TRENDnet TEW-818DRU 1.0.14.6; the vulnerability is in an unknown functionality of /usr/sbin/httpd (HTTP Request Handler) that leads to a denial of service. Exploitation requires access over the local network, and the exploit has been disclosed publicly. Vendors were contacte...

CVE-2025-2958 TRENDnet TEW-818DRU HTTP Request httpd denial of service

A vulnerability was found in TRENDnet TEW-818DRU 1.0.14.6. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to denial of service. The attack needs to be done...

CVE-2025-2957

A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the loca...

CVE-2025-2957 TRENDnet TEW-411BRP+ HTTP Request httpd sub_401DB0 null pointer dereference

A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the loca...

CVE-2025-2957

TRENDnet TEW-411BRP+ firmware 2.07 contains a null pointer dereference in the HTTP Request Handler (function sub_401DB0) in /usr/sbin/httpd. The flaw can be triggered from the local network, and the exploit has been disclosed publicly. Vendor was contacted early but did not respond.

CVE-2025-2957 TRENDnet TEW-411BRP+ HTTP Request httpd sub_401DB0 null pointer dereference

A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the loca...

CVE-2025-2956

The CVE-2025-2956 entry applies to TRENDnet TI-G102i firmware versions 1.0.7.S0_ and 1.0.8.S0_. The vulnerability is a null pointer dereference in the HTTP Request Handler component (plugins_call_handle_uri_raw) of /usr/sbin/lighttpd, exploitable by an attacker on an adjacent network with low com...

CVE-2025-2956 TRENDnet TI-G102i HTTP Request lighttpd plugins_call_handle_uri_raw null pointer dereference

A vulnerability was found in TRENDnet TI-G102i 1.0.7.S0 /1.0.8.S0 and classified as problematic. This issue affects the function pluginscallhandleuriraw of the file /usr/sbin/lighttpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be...

CVE-2025-27716

Improper limitation of a pathname to a restricted directory 'Path Traversal' issue exists in the file/folder listing process of the USB storage file-sharing function of HGW-BL1500HM Ver 002.002.003 and earlier. If this vulnerability is exploited, the product's files may be obtained and/or altered...

PT-2025-13630 · Trendnet · Trendnet Tew-818Dru

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-818DRU version 1.0.14.6 Description: A vulnerability was found in the TRENDnet TEW-818DRU, affecting an unknown functionality of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to denial of...

PT-2025-13632 · Trendnet · Trendnet Tew-637Ap +1

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-637AP versions 1.2.7 through 1.3.0.106 TRENDnet TEW-638APB versions 1.2.7 through 1.3.0.106 Description: A problematic vulnerability has been found in the HTTP Request Handler component of the affected devices. This issue affects...

TRENDnet TI-G102i 安全漏洞

The TRENDnet TI-G102i is a smart switch from Trendnet, Inc. A security vulnerability exists in TRENDnet TI-G102i versions 1.0.7.S0 and 1.0.8.S0, which stems from a null pointer dereference issue in the HTTP request processing component...

PT-2025-13631 · Trendnet · Trendnet Tew-410Apb

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-410APB version 1.3.06b Description: A vulnerability was found in the HTTP Request Handler component, specifically affecting the function sub 4019A0 of the file /usr/sbin/httpd. This issue leads to a null pointer dereference. The...

AZL-59294 CVE-2025-1217 affecting package php for versions less than 8.3.19-1

In PHP from 8.1. before 8.1.32, from 8.2. before 8.2.28, from 8.3. before 8.3.19, from 8.4. before 8.4.5, when http request module parses HTTP response obtained from a server, folded headers are parsed incorrectly, which may lead to misinterpreting the response and using incorrect headers, MIME...

Exploit for CVE-2025-29927

CVE-2025-29927 - Next.js Middleware Authorization Bypass PoC...

Exploit for CVE-2025-29927

CVE-2025-29927 - Next.js Middleware Authorization Bypass PoC...

GHSA-PFQJ-W6R6-G86V Pitchfork HTTP Request/Response Splitting vulnerability

Impact HTTP Response Header Injection in Pitchfork Versions 0.11.0 when used in conjunction with Rack 3 Patches The issue was fixed in Pitchfork release 0.11.0 Workarounds There are no known work arounds. Users must upgrade...

Pitchfork HTTP Request/Response Splitting vulnerability

Impact HTTP Response Header Injection in Pitchfork Versions 0.11.0 when used in conjunction with Rack 3 Patches The issue was fixed in Pitchfork release 0.11.0 Workarounds There are no known work arounds. Users must upgrade...

openSUSE Security Advisory (SUSE-SU-2025:1008-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...