CVE-2026-10120: Stack-based Buffer Overflow in TRENDnet TEW-432BRP
CVE-2026-10120 is a high-severity stack-based buffer overflow vulnerability in the TRENDnet TEW-432BRP router firmware version 3. 10B20. The flaw exists in the formSetFirewallRule function, where improper handling of the firewall_name argument allows remote attackers to trigger a buffer overflow. The vulnerability is exploitable remotely and a public exploit is available. However, the affected product has been end-of-life since 2009, and the vendor has stated they cannot replicate or fix this issue due to the product's age and lack of support.
AI Analysis
Technical Summary
This vulnerability involves a stack-based buffer overflow in the function formSetFirewallRule of the TRENDnet TEW-432BRP router firmware version 3.10B20. Remote attackers can manipulate the firewall_name parameter to overflow the stack, potentially leading to code execution or denial of service. The vulnerability is rated with a CVSS 4.0 score of 8.7, indicating high severity. Despite the availability of a public exploit, the vendor has declared the product end-of-life for over 15 years and will not provide a fix or mitigation.
Potential Impact
Successful exploitation of this vulnerability can lead to remote code execution or denial of service on the affected device. Given the high CVSS score and the nature of the buffer overflow, attackers could fully compromise the device. However, the impact is limited to devices still running this outdated and unsupported firmware version.
Mitigation Recommendations
No official fix or patch is available due to the product being end-of-life since 2009. Users are advised to discontinue use of the TRENDnet TEW-432BRP device or replace it with a supported model. Network segmentation or firewall rules may help limit exposure, but no vendor-supported remediation exists.
CVE-2026-10120: Stack-based Buffer Overflow in TRENDnet TEW-432BRP
Description
CVE-2026-10120 is a high-severity stack-based buffer overflow vulnerability in the TRENDnet TEW-432BRP router firmware version 3. 10B20. The flaw exists in the formSetFirewallRule function, where improper handling of the firewall_name argument allows remote attackers to trigger a buffer overflow. The vulnerability is exploitable remotely and a public exploit is available. However, the affected product has been end-of-life since 2009, and the vendor has stated they cannot replicate or fix this issue due to the product's age and lack of support.
CVSS v4.0
Score 8.7high
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves a stack-based buffer overflow in the function formSetFirewallRule of the TRENDnet TEW-432BRP router firmware version 3.10B20. Remote attackers can manipulate the firewall_name parameter to overflow the stack, potentially leading to code execution or denial of service. The vulnerability is rated with a CVSS 4.0 score of 8.7, indicating high severity. Despite the availability of a public exploit, the vendor has declared the product end-of-life for over 15 years and will not provide a fix or mitigation.
Potential Impact
Successful exploitation of this vulnerability can lead to remote code execution or denial of service on the affected device. Given the high CVSS score and the nature of the buffer overflow, attackers could fully compromise the device. However, the impact is limited to devices still running this outdated and unsupported firmware version.
Mitigation Recommendations
No official fix or patch is available due to the product being end-of-life since 2009. Users are advised to discontinue use of the TRENDnet TEW-432BRP device or replace it with a supported model. Network segmentation or firewall rules may help limit exposure, but no vendor-supported remediation exists.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-05-29T17:19:21.599Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a1b3fd3e29bf47b506fe4c8
Added to database: 5/30/2026, 7:51:47 PM
Last enriched: 5/30/2026, 7:51:56 PM
Last updated: 5/31/2026, 4:11:20 AM
Views: 11
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.