CVE-2025-8758 – TRENDnet TEW-822DRE FTP Server Local Privilege Escalation Vulnerability

August 9, 2025

CVE ID : CVE-2025-8758

Published : Aug. 9, 2025, 4:15 p.m. | 7 hours, 25 minutes ago

Description : A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 7.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-8759 – TRENDnet Lighttpd Hard-Coded Cryptographic Key Vulnerability

Next Article CVE-2025-8757 – TRENDnet Embedded Boa Web Server Least Privilege Violation

Highlights

CVE-2025-7911 – A vulnerability classified as critical was found i

July 20, 2025

CVE ID : CVE-2025-7911

Published : July 20, 2025, 11:15 p.m. | 14 minutes ago

Description : A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnp_ctrl.asp of the component jhttpd. The manipulation of the argument remove_ext_proto/remove_ext_port leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

I compared the best headphones from Apple, Sony, Bose, and Sonos: Here’s how the AirPods Max wins

I changed these 6 settings on my iPad to significantly improve its battery life

DistroWatch Weekly, Issue 1134

3 portable power stations I travel everywhere with (and how they differ)

Next.js PWA offline capability with Service Worker, no extra package

Next.js PWA offline capability with Service Worker, no extra package

spatie/laravel-flare

Establishing Consistent Data Foundations with Laravel’s Database Population System

Windows 11 Copilot gets free access to GPT-5 Thinking, reduced rate limits than ChatGPT Free

Windows 11 Copilot gets free access to GPT-5 Thinking, reduced rate limits than ChatGPT Free

Best Architecture AI Rendering Platform: 6 Tools Tested

Microsoft won’t kill off Chromium Edge and PWAs on Windows 10 until October 2028

CVE-2025-8758 – TRENDnet TEW-822DRE FTP Server Local Privilege Escalation Vulnerability

Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models

Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation

CVE-2025-53891 – Apache Time-Line File Upload Vulnerability (Remote File Inclusion/DoS)

CVE-2023-41566 – OA EKP Arbitrary Download Vulnerability

CVE-2024-51453 – IBM Sterling Secure Proxy Directory Traversal Vulnerability

The UX butterfly effect

CVE-2025-7911 – A vulnerability classified as critical was found i

DomainMOD – manage your domains and other internet assets in a central location

My 6 favorite open-source Android apps from the Google Play store – and why that matters

CVE-2025-46332 – Vercel Flags SDK Information Disclosure

CVE-2025-8758 – TRENDnet TEW-822DRE FTP Server Local Privilege Escalation Vulnerability

Related Posts