CVE-2025-44649 Information

Description

In the configuration file of racoon in the TRENDnet TEW-WLC100P 2.03b03 the first item of exchage_mode is set to aggressive. Aggressive mode in IKE Phase 1 exposes identity information in plaintext is vulnerable to offline dictionary attacks and lacks flexibility in negotiating security parameters.

Reference

http://tew-wlc100p.com https://gist.github.com/TPCchecker/6d787c4916891f493b274b70abfad860

Related CNNVD

CNNVD-202507-2679 (Published: 2025-07-21)