Null Pointer Dereference in TRENDnet Access Points
CVE-2025-2960

7.1HIGH

Key Information:

Vendor: Trendnet
Status: Tew-637ap; Tew-638apb
Vendor: CVE Published:; 30 March 2025

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2025-2960?

A vulnerability exists in the TRENDnet TEW-637AP and TEW-638APB models due to a null pointer dereference in the HTTP Request Handler component. This issue allows an attacker, with local network access, to exploit the function sub_41DED0, which can lead to denial-of-service conditions. The vulnerability was disclosed publicly, and there has been no response from the vendor regarding the issue, leaving users potentially exposed to this threat.

Affected Version(s)

TEW-637AP 1.2.7

TEW-637AP 1.3.0.106

TEW-638APB 1.2.7

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-2960 - Proof of Concept

References

https://vuldb.com/?id.302013

vdb-entrytechnical-description

https://vuldb.com/?ctiid.302013

signaturepermissions-required

https://vuldb.com/?submit.521727

third-party-advisory

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

🟡
Public PoC available
Mar 30, 2025
👾
Exploit known to exist
Mar 30, 2025
Vulnerability published
Mar 30, 2025
Vulnerability Reserved
Mar 29, 2025

Credit

zhongwei gu (VulDB User)

Trendnet

Badges

What is CVE-2025-2960?

Affected Version(s)

Exploit Proof of Concept (PoC)

References

CVSS V4

Timeline

Credit