{"vulnerability": "CVE-2025-2957", "sightings": [{"uuid": "b6e4beb8-2d9d-4e19-90d0-a1bd00e86527", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llwsmfbvya2z", "content": "", "creation_timestamp": "2025-04-03T21:06:34.089313Z"}, {"uuid": "df98c611-944c-4b74-91c9-fd126ce02993", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29572", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lua2nj4l2w2j", "content": "", "creation_timestamp": "2025-07-18T08:45:47.181510Z"}, {"uuid": "cf8d2491-8a03-4a8f-8a06-d8a28bfcf710", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29573", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3loh6qq3ipb2p", "content": "", "creation_timestamp": "2025-05-05T20:16:38.835426Z"}, {"uuid": "eff1de12-6319-477b-aed0-a326115915e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9552", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2957\n\ud83d\udd25 CVSS Score: 7.1 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub_401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-03-30T19:00:07.178Z\n\ud83d\udccf Modified: 2025-03-30T19:00:07.178Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.302010\n2. https://vuldb.com/?ctiid.302010\n3. https://vuldb.com/?submit.521719\n4. https://docs.google.com/document/d/1NnvweBsYJQ0MGwBvpi5aAe69g8g5PaNL/edit#heading=h.gjdgxs\n5. https://drive.google.com/file/d/1Hq3-cTke0SeJguNpop-jpzMtoCHkg9Cb/view?usp=drive_link", "creation_timestamp": "2025-03-30T19:32:28.000000Z"}, {"uuid": "b9f4af44-72d2-4e00-80af-5ee543e818a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10328", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-29570\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to escalate privileges via the function tftp_image_check of a binary named rc.\n\ud83d\udccf Published: 2025-04-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T19:24:24.643Z\n\ud83d\udd17 References:\n1. https://github.com/IOTRes/IOT_Firmware_Update/blob/main/firmwareupdate.md", "creation_timestamp": "2025-04-03T19:35:39.000000Z"}, {"uuid": "6686b36c-ead9-4c1c-86a7-6526bf0f5014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "seen", "source": "Telegram/D4G2y7Lt0clBHELobM9JrHHaOIOxKBHt0TACuW0rNT_vIWI", "content": "", "creation_timestamp": "2025-03-30T22:00:20.000000Z"}, {"uuid": "e97af8f9-2c8b-417a-befc-7fcde7e2a2c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "seen", "source": "https://t.me/cvedetector/21519", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2957 - TRENDnet TEW-411BRP+ HTTP Request Handler Null Pointer Dereference Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2957 \nPublished : March 30, 2025, 7:15 p.m. | 1\u00a0hour, 15\u00a0minutes ago \nDescription : A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub_401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-30T23:06:38.000000Z"}, {"uuid": "9fa99618-f1b4-4141-b691-b1c52ae702be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "seen", "source": "https://t.me/cvedetector/22025", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-29570 - Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-29570 \nPublished : April 3, 2025, 8:15 p.m. | 1\u00a0hour ago \nDescription : An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to escalate privileges via the function tftp_image_check of a binary named rc. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-03T23:36:27.000000Z"}, {"uuid": "ae3a57c4-0aaa-4a66-bb20-c0359bc67187", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29573", "type": "seen", "source": "https://t.me/cvedetector/24491", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-29573 - Mezzanine CMS Forms Module XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-29573 \nPublished : May 5, 2025, 7:15 p.m. | 20\u00a0minutes ago \nDescription : Cross-Site Scripting (XSS) vulnerability exists in Mezzanine CMS 6.0.0 in the \"View Entries\" feature within the Forms module. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-05T21:44:33.000000Z"}]}