CVE-2026-10161
Stack-Based Buffer Overflow in TRENDnet TEW-432BRP
Publication date: 2026-05-31
Last updated on: 2026-05-31
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| trendnet | tew-432brp | 3.10b20 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-10161 is a stack-based buffer overflow vulnerability in the TRENDnet TEW-432BRP router, specifically in the formResetStatistic function accessed via the /goform/formResetStatistic endpoint.
The vulnerability occurs because user input is copied directly into a local stack variable without proper validation or sanitization, allowing an attacker to overwrite the function's return address by sending a long string in a POST request.
Exploiting this vulnerability causes the router to crash and become unresponsive, disrupting its normal operation.
How can this vulnerability impact me? :
This vulnerability can cause the affected TRENDnet router to crash and stop functioning properly, leading to denial of service.
Since the exploit can be initiated remotely, an attacker could disrupt network connectivity by making the router unresponsive.
Because the device is no longer supported and cannot be patched, the risk remains unless the device is replaced.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by sending a specially crafted POST request containing a long string (e.g., 820 'a' characters) to the /goform/formResetStatistic endpoint of the TRENDnet TEW-432BRP router.
If the device crashes or becomes unresponsive after this request, it indicates the presence of the vulnerability due to a stack-based buffer overflow.
A sample command using curl to test this could be:
- curl -X POST -d "status_statistic=$(python3 -c 'print("a"*820)')" http://[router_ip]/goform/formResetStatistic
Replace [router_ip] with the actual IP address of the target device.
What immediate steps should I take to mitigate this vulnerability?
Since the affected product has been end-of-life (EOL) for 15 years and the vendor does not provide patches or fixes, immediate mitigation steps include:
- Isolate the vulnerable device from untrusted networks to prevent remote exploitation.
- Disable or restrict access to the /goform/formResetStatistic endpoint if possible.
- Monitor network traffic for suspicious POST requests targeting this endpoint.
- Consider replacing the device with a supported and updated model to eliminate the risk.