CVE-2025-25523: Buffer Overflow
First published: Tue Feb 11 2025(Updated: )
Buffer overflow vulnerability in Trendnet TEG-40128 Web Smart Switch v1(1.00.023) due to the lack of length verification, which is related to the mobile access point setup operation. The attacker can directly control the remote target device by successfully exploiting this vulnerability.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Trendnet TEG-40128 Web Smart Switch |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2025-25523?
CVE-2025-25523 is classified as a high severity vulnerability due to its potential for remote exploitation.
How do I fix CVE-2025-25523?
To fix CVE-2025-25523, update the Trendnet TEG-40128 Web Smart Switch to the latest firmware version that addresses this buffer overflow vulnerability.
What does CVE-2025-25523 affect?
CVE-2025-25523 affects the Trendnet TEG-40128 Web Smart Switch version 1 (1.00.023) due to improper length verification during mobile access point setup.
What type of vulnerability is CVE-2025-25523?
CVE-2025-25523 is a buffer overflow vulnerability that can allow an attacker to control the remote target device.
Can CVE-2025-25523 be exploited remotely?
Yes, CVE-2025-25523 can be exploited remotely if the attacker successfully manipulates the vulnerable mobile access point setup process.
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/author
- agent/source
- agent/tags
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/nvd-api
- source/NVD
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/event
- vendor/trendnet
- canonical/trendnet teg-40128 web smart switch