Skip to main content

TRENDnet TEW-432BRP EUVD-2026-33322

| CVE-2026-10062 HIGH
Stack-based Buffer Overflow (CWE-121)
2026-05-29 VulDB GHSA-f6m3-35xp-mwj6
Buffer Overflow Stack Overflow Tew 432Brp
7.4
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
7.4 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

5
Analysis Updated
May 29, 2026 - 15:30 vuln.today
v3 (cvss_changed)
Analysis Updated
May 29, 2026 - 15:30 vuln.today
v2 (cvss_changed)
Re-analysis Queued
May 29, 2026 - 15:22 vuln.today
cvss_changed
CVSS changed
May 29, 2026 - 15:22 NVD
8.8 (HIGH) 7.4 (HIGH)
Analysis Generated
May 29, 2026 - 15:15 vuln.today

DescriptionCVE.org

A vulnerability was determined in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the function formSetRoute of the file /goform/formSetRoute. This manipulation of the argument ip/mask/gateway causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities." This vulnerability only affects products that are no longer supported by the maintainer.

AnalysisAI

Stack-based buffer overflow in TRENDnet TEW-432BRP router firmware 3.10B20 allows authenticated remote attackers to corrupt memory by sending crafted ip, mask, or gateway parameters to the formSetRoute handler at /goform/formSetRoute, potentially achieving arbitrary code execution on the device. Publicly available exploit code exists (disclosed via VulDB and a GitHub PoC), and because the product has been end-of-life since 2009 the vendor has explicitly declined to issue a fix. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon
Identify exposed TEW-432BRP admin UI
Delivery
Obtain admin credentials (default/weak/phished)
Exploit
POST oversized ip/mask/gateway to /goform/formSetRoute
Install
Overflow stack buffer in formSetRoute
C2
Overwrite saved return address with shellcode pointer
Execute
Execute MIPS payload as router process
Impact
Pivot to intercept LAN traffic and persist on gateway
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires authenticated access (CVSS PR:L) to the TRENDnet TEW-432BRP web administration interface and network reachability to the /goform/formSetRoute endpoint, specifically the ability to submit the formSetRoute form with attacker-controlled ip, mask, and gateway parameters. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment CVSS 4.0 scores this 7.4 with vector AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H, signaling network-reachable, low-complexity exploitation that requires low privileges (an authenticated session on the router's web UI) and yields high confidentiality, integrity, and availability impact on the device itself with no scope change. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has obtained admin credentials to the router's web interface - through default-credential reuse, phishing, or LAN-side access - sends a crafted HTTP POST to /goform/formSetRoute with an oversized ip, mask, or gateway value, overflowing a stack buffer in formSetRoute and overwriting the return address to redirect execution. Because legacy SOHO firmware typically lacks ASLR and non-executable stacks, the attacker can stage shellcode for the router's MIPS architecture and gain persistent control of the gateway, pivoting to intercept or redirect all LAN traffic. …
Remediation No vendor-released patch identified at time of analysis, and none will be issued because the device has been EOL since 2009. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: conduct network inventory scan to identify any TRENDnet TEW-432BRP units in production and document owner/location of each device. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-33322 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy