CVE-2026-10061 - Vulnerability Details

- TRENDnet TEW-432BRP formWPS command injection

Description

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. Affected is the function formWPS of the file /goform/formWPS. The manipulation of the argument peerPin results in command injection. The attack can be executed remotely. The exploit has been made public and could be used. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities." This vulnerability only affects products that are no longer supported by the maintainer.

Published: 2026-05-29

Score: 5.3 Medium

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability resides in the TRENDnet TEW-432BRP router firmware 3.10B20 in the formWPS handler of the /goform/formWPS endpoint. By controlling the peerPin argument, an attacker can inject arbitrary operating‑system commands into the router’s execution context. This affords remote attackers the ability to run arbitrary code on the device, potentially leading to full compromise of the network segment. The weakness is a classic command injection flaw outlined by CWE-77 and a malformed input handling flaw referred to as CWE-74.

Affected Systems

The affected product is TRENDnet TEW-432BRP version 3.10B20. This unit is an end‑of‑life product, discontinued in 2009, and the vendor has made it clear that the device is no longer supported or patched.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate severity, but the lack of a patch and the remote nature of the attack raise the practical risk. EPSS information is not available, and the vulnerability is not listed in the CISA KEV catalogue. An attacker can remotely access the device via the management interface, submit a crafted peerPin value, and trigger the injected command. Because the device is out of warranty and unmaintained, the likelihood of exploitation remains significant for networks still operating this hardware.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

TRENDnet

TEW-432BRP

affected

Version	Status	Constraints
`3.10B20`	affected	—

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Replace the TRENDnet TEW-432BRP with a modern, supported model that has up‑to‑date firmware
Disable the WPS feature in the router’s settings or block access to the /goform/formWPS endpoint via a firewall or NAT rule
Restrict management interface access to known IP addresses or internal network only to limit attackers’ reach
Monitor system logs for unusual command execution patterns and consider network segmentation to isolate the router

Generated by OpenCVE AI on May 29, 2026 at 14:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

No EPSS score available.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://github.com/wudipjq/my_vuln/blob/main/TRENDnet/vuln_2/2.md
https://vuldb.com/submit/814757
https://vuldb.com/vuln/367147
https://vuldb.com/vuln/367147/cti

History

Fri, 29 May 2026 14:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 29 May 2026 13:45:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. Affected is the function formWPS of the file /goform/formWPS. The manipulation of the argument peerPin results in command injection. The attack can be executed remotely. The exploit has been made public and could be used. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities." This vulnerability only affects products that are no longer supported by the maintainer.
Title		TRENDnet TEW-432BRP formWPS command injection
First Time appeared		Trendnet Trendnet tew-432brp
Weaknesses		CWE-74 CWE-77
CPEs		cpe:2.3:a:trendnet:tew-432brp::::::::
Vendors & Products		Trendnet Trendnet tew-432brp
References		https://github.com/wudipjq/my_vuln/blob/main/TRENDnet/vuln_2/2.md https://vuldb.com/submit/814757 https://vuldb.com/vuln/367147 https://vuldb.com/vuln/367147/cti
Metrics		cvssV2_0 `{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Trendnet Tew-432brp

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-05-29T13:30:11.944Z

Updated: 2026-05-29T13:59:23.223Z

Reserved: 2026-05-29T08:19:49.839Z

Link: CVE-2026-10061

Vulnrichment

Updated: 2026-05-29T13:59:19.382Z

NVD

Status : Awaiting Analysis

Published: 2026-05-29T14:16:25.563

Modified: 2026-05-29T15:11:32.477

Link: CVE-2026-10061

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-29T15:00:17Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object