CVE-2026-10119 TRENDnet CVE debrief

Who should care

Organizations with legacy network infrastructure, particularly small business and home office deployments where TRENDnet TEW-432BRP routers may remain in service. Security teams responsible for asset inventory and vulnerability management. Network administrators managing router firmware lifecycles.

Technical summary

The formSetMACFilter function in /goform/formSetMACFilter on TRENDnet TEW-432BRP 3.10B20 fails to properly validate the length of the filter_name parameter, resulting in a stack-based buffer overflow (CWE-121). Remote exploitation is possible without user interaction. The vendor confirmed the vulnerability but stated the product has been end-of-life since 2009 and cannot be fixed. A public exploit has been released.

Defensive priority

critical

Recommended defensive actions

• Immediately remove all TRENDnet TEW-432BRP devices from production networks; no patch will be issued due to 15-year EOL status
• Block or restrict access to /goform/formSetMACFilter at network perimeter if device retirement is not immediately feasible
• Segment EOL devices into isolated network zones with no internet access and minimal internal connectivity
• Monitor for suspicious traffic targeting router management interfaces, particularly HTTP requests to /goform/formSetMACFilter
• Inventory network infrastructure to identify any additional TRENDnet TEW-432BRP or similarly EOL equipment requiring replacement
• resourceLinkAnnotations: [ref-4] [ref-6] [cve-org] [nvd]

Evidence notes

Vulnerability confirmed through Vuldb CNA submission with public exploit disclosure. CVSS 4.0 vector indicates network attack vector with low attack complexity, no user interaction, and high impact to confidentiality, integrity, and availability. Vendor EOL statement explicitly acknowledges vulnerability but declines remediation due to 15-year product discontinuation.

Official resources