PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-10062 TRENDnet CVE debrief

A stack-based buffer overflow vulnerability exists in the TRENDnet TEW-432BRP wireless router firmware version 3.10B20. The vulnerability resides in the `formSetRoute` function within the `/goform/formSetRoute` endpoint, where improper handling of the `ip`, `mask`, and `gateway` parameters allows remote attackers to trigger memory corruption. The CVSS 4.0 vector indicates network attack vector with low attack complexity, no privileges required, and high impact to confidentiality, integrity, and availability. The vendor has explicitly stated this product reached end-of-life in 2009—approximately 15 years prior to disclosure—and will not provide patches or technical support. Public exploit disclosure increases immediate risk for any remaining deployed units.

Vendor
TRENDnet
Product
TEW-432BRP
CVSS
HIGH 7.4
CISA KEV
Not listed in stored evidence
Original CVE published
2026-05-29
Original CVE updated
2026-05-29
Advisory published
2026-05-29
Advisory updated
2026-05-29

Who should care

Network administrators maintaining legacy infrastructure, security teams responsible for IoT/OT asset management, and organizations with hardware refresh programs

Technical summary

The `formSetRoute` function in TRENDnet TEW-432BRP firmware 3.10B20 fails to properly validate input length for `ip`, `mask`, and `gateway` parameters, resulting in stack-based buffer overflow. Remote attackers can exploit this without authentication to execute arbitrary code or cause denial of service. The vulnerability affects a product that has been end-of-life since 2009 with no remediation available from the vendor.

Defensive priority

critical

Recommended defensive actions

  • Immediately inventory all TRENDnet TEW-432BRP devices and remove from production networks
  • Block or restrict access to `/goform/formSetRoute` endpoint at network perimeter if device retirement is not immediately feasible
  • Segment EOL devices into isolated network zones with no internet egress
  • Monitor for anomalous traffic targeting router management interfaces
  • Replace affected hardware with actively supported alternatives per organizational procurement standards

Evidence notes

Vendor EOL statement confirms no remediation path. CVSS 4.0 scoring from NVD metadata. CWE-121 (stack-based buffer overflow) and CWE-119 (improper restriction of operations within buffer bounds) identified in source. Exploit publicly disclosed per Vuldb submission and GitHub reference.

Official resources

2026-05-29