Skip to main content

TRENDnet TEW-432BRP CVE-2026-10123

| EUVD-2026-33465 HIGH
Stack-based Buffer Overflow (CWE-121)
2026-05-30 VulDB GHSA-jf2g-jq29-jvjp
Buffer Overflow Stack Overflow Tew 432Brp
7.4
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
7.4 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

5
Analysis Updated
May 30, 2026 - 16:29 vuln.today
v3 (cvss_changed)
Analysis Updated
May 30, 2026 - 16:29 vuln.today
v2 (cvss_changed)
Re-analysis Queued
May 30, 2026 - 16:22 vuln.today
cvss_changed
CVSS changed
May 30, 2026 - 16:22 NVD
8.8 (HIGH) 7.4 (HIGH)
Analysis Generated
May 30, 2026 - 16:20 vuln.today

DescriptionCVE.org

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFilter of the file /goform/formSetDomainFilter. Performing a manipulation of the argument blocked_domain/permitted_domain/blocked_domain_list/permitted_domain_list results in stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been made public and could be used. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities." This vulnerability only affects products that are no longer supported by the maintainer.

AnalysisAI

Stack-based buffer overflow in TRENDnet TEW-432BRP 3.10B20 router firmware allows authenticated remote attackers to corrupt memory via the formSetDomainFilter handler at /goform/formSetDomainFilter by manipulating the blocked_domain, permitted_domain, blocked_domain_list, or permitted_domain_list parameters. Publicly available exploit code exists, and the vendor has stated the device has been end-of-life since 2009 and will not receive a fix, leaving any internet-exposed unit permanently vulnerable. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify exposed TEW-432BRP admin UI
Delivery
Obtain low-privileged credentials (default/weak password)
Exploit
Send crafted POST to /goform/formSetDomainFilter
Execution
Overflow stack buffer in formSetDomainFilter
Persist
Execute arbitrary code on router
Impact
Pivot to LAN traffic interception or DNS hijack
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires (1) network reachability to the router's HTTP administration interface, typically the LAN-side web UI on port 80, and (2) valid low-privileged authentication to that interface as indicated by PR:L in the CVSS 4.0 vector. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment CVSS 4.0 7.4 reflects network attack vector, low complexity, low privileges required, no user interaction, and high impact to confidentiality, integrity, and availability of the device itself (E:P confirms a proof-of-concept exploit is reported). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has obtained or guessed low-privileged web-UI credentials (often trivial on legacy SOHO routers with default passwords) sends a crafted HTTP POST to /goform/formSetDomainFilter containing an oversized blocked_domain or permitted_domain_list value, overflowing the stack buffer in formSetDomainFilter and likely achieving arbitrary code execution on the router given the absence of modern exploit mitigations on embedded devices of this era. Public exploit code is available on GitHub, lowering the skill barrier for opportunistic attackers scanning for exposed TEW-432BRP units to hijack for traffic interception, DNS redirection, or botnet recruitment.
Remediation No vendor-released patch identified at time of analysis - TRENDnet has formally declined to fix this vulnerability because the product reached end-of-life in 2009. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Conduct network inventory audit to identify all TRENDnet TEW-432BRP devices in production, regardless of firmware version. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-10123 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy