CVE-2026-10120 | TRENDnet TEW-432BRP 3.10B20 formSetFirewallRule firewall_name stack-based overflow

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. It has been declared as critical. The affected element is the function formSetFirewallRule of the file /goform/formSetFirewallRule. The manipulation of the argument firewall_name results in stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is identified as CVE-2026-10120. The attack can be executed remotely. Additionally, an exploit exists.

The vendor explains: “This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities.”VulDB Recent EntriesRead More