Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
CVE-2026-10121: TRENDnet TEW-432BRP: Remote Code Execution via Buffer Overflow
CVE-2026-10121
Summary
An old version of the TRENDnet TEW-432BRP router has a security flaw that can be exploited by hackers to execute malicious code remotely. This affects a very old model that is no longer supported by the manufacturer, so there's no fix available. If you're still using this router, consider replacing it with a newer model that's more secure.
Original title
A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUrlFilter of the file /goform/formSetUrlFilter. This manipulation of the argument keyword_list/keyw...
Original description
A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUrlFilter of the file /goform/formSetUrlFilter. This manipulation of the argument keyword_list/keyword causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be used. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities." This vulnerability only affects products that are no longer supported by the maintainer.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-121
Stack-based Buffer Overflow
Published: 30 May 2026 · Updated: 1 Jun 2026 · First seen: 30 May 2026