CVE-2025-10957

Vulnerability Description

This vulnerability exists in the Syrotech SY-GPON-2010-WADONT router due to improper access control in its FTP service. A remote attacker could exploit this vulnerability by establishing an FTP connection using default credentials, potentially gaining unauthorized access to configuration files, user credentials, or other sensitive information stored on the targeted device.

Related Weaknesses (CWE)

CWE-284

References

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2025-0

FAQ

What is CVE-2025-10957?

CVE-2025-10957 is a documented vulnerability. This vulnerability exists in the Syrotech SY-GPON-2010-WADONT router due to improper access control in its FTP service. A remote attacker could exploit this vulnerability by establishing an FTP connec...

How severe is CVE-2025-10957?

CVSS scoring is not yet available for CVE-2025-10957. Check NVD for updates.

Is there a patch for CVE-2025-10957?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.