CVE-2018-19242

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-632BRP version 1.010B32 TRENDnet TEW-673GRU (affected versions not specified)

Description The issue is related to a buffer overflow in the apply.cgi file, which can be exploited by crafting a POST request payload with authentication. This allows attackers to hijack the control flow to any location specified by the attacker.

Recommendations For TRENDnet TEW-632BRP version 1.010B32, consider restricting access to the apply.cgi file until a patch is available. For TRENDnet TEW-673GRU, at the moment, there is no information about a newer version that contains a fix for this vulnerability.