First published: Sun Mar 30 2025(Updated: )
A vulnerability was found in TRENDnet TI-G102i 1.0.7.S0_ /1.0.8.S0_ and classified as problematic. This issue affects the function plugins_call_handle_uri_raw of the file /usr/sbin/lighttpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be done within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
TRENDnet TI-G102i | >=1.0.7.S0_<=1.0.8.S0_ |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-2956 is classified as a problematic vulnerability affecting the TRENDnet TI-G102i.
To address CVE-2025-2956, users should update the firmware of the TRENDnet TI-G102i to versions beyond 1.0.8.S0_.
CVE-2025-2956 affects the HTTP Request Handler functionality in the TRENDnet TI-G102i.
CVE-2025-2956 is a null pointer dereference vulnerability.
CVE-2025-2956 affects TRENDnet TI-G102i versions 1.0.7.S0_ through 1.0.8.S0_.