CVE-2025-8757 – TRENDnet Embedded Boa Web Server Least Privilege Violation

August 9, 2025

CVE ID : CVE-2025-8757

Published : Aug. 9, 2025, 3:15 p.m. | 8 hours, 25 minutes ago

Description : A vulnerability was found in TRENDnet TV-IP110WN 1.2.2 and classified as problematic. Affected by this issue is some unknown functionality of the file /server/boa.conf of the component Embedded Boa Web Server. The manipulation leads to least privilege violation. Local access is required to approach this attack. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 7.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-8758 – TRENDnet TEW-822DRE FTP Server Local Privilege Escalation Vulnerability

Next Article CVE-2025-8756 – TDuckCloud Authorization Interceptor PreHandle Remote Improper Authorization Vulnerability

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

I compared the best headphones from Apple, Sony, Bose, and Sonos: Here’s how the AirPods Max wins

I changed these 6 settings on my iPad to significantly improve its battery life

DistroWatch Weekly, Issue 1134

3 portable power stations I travel everywhere with (and how they differ)

Next.js PWA offline capability with Service Worker, no extra package

Next.js PWA offline capability with Service Worker, no extra package

spatie/laravel-flare

Establishing Consistent Data Foundations with Laravel’s Database Population System

Windows 11 Copilot gets free access to GPT-5 Thinking, reduced rate limits than ChatGPT Free

Windows 11 Copilot gets free access to GPT-5 Thinking, reduced rate limits than ChatGPT Free

Best Architecture AI Rendering Platform: 6 Tools Tested

Microsoft won’t kill off Chromium Edge and PWAs on Windows 10 until October 2028

CVE-2025-8757 – TRENDnet Embedded Boa Web Server Least Privilege Violation

Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models

Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation

Why Temu’s bargain prices are about to hit a tariff wall

Tempo – metronome for musicians

CVE-2025-48342 – RedefiningTheWeb Dynamic Pricing & Discounts Lite for WooCommerce CSRF Vulnerability

CVE-2025-7475 – Simple Car Rental System SQL Injection Vulnerability

CVE-2020-36845 – KnowBe4 Security Awareness Training Cross-Site Scripting (XSS)

Microsoft confirms limited Microsoft 365 app support on Windows 10 after October 2025

TorrentLocker — Ransomware in a country near you

What’s new in iOS 18.4? AI priority notifications and 9 other big updates

CVE-2025-8757 – TRENDnet Embedded Boa Web Server Least Privilege Violation

Related Posts