Pjqwudi_Buoy

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** Command injection is possible through the remote manipulation of the `ip/mask/gateway` argument within the `formSetRoute()` function of the '/goform/formSetRoute' endpoint. Command injection is a flaw that allows an attacker to execute arbitrary operating system commands on the target machine. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** Remote command injection is possible through the manipulation of the `peerPin` argument within the `formWPS()` function of the `/goform/formWPS` file. Command injection is a flaw that allows an attacker to execute arbitrary operating system commands on the target machine. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** A stack-based buffer overflow occurs in the `formSetRoute()` function within the `/goform/formSetRoute` file. This issue is triggered by the manipulation of the `ip`, `mask`, and `gateway` arguments, allowing a remote attacker to execute arbitrary code or cause a denial of service (DoS), which is a state where the system becomes unavailable to users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** A stack-based buffer overflow exists in the `formWPS()` function within the `/goform/formWPS` file. This issue occurs when the `peerPin` argument is manipulated, allowing a remote attacker to execute arbitrary code or cause a denial of service (DoS), which is a condition where the system becomes unavailable to users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** A stack-based buffer overflow occurs in the `formSetPortTr()` function within the `/goform/formSetPortTr` file. This issue is triggered by manipulating the `special name` argument, allowing a remote attacker to initiate the attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** A stack-based buffer overflow occurs due to the manipulation of the `filter name` argument within the `formSetMACFilter()` function located in the `/goform/formSetMACFilter` file. This allows for remote exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** A stack-based buffer overflow occurs when manipulating the `firewall name` argument within the `formSetFirewallRule()` function located in the '/goform/formSetFirewallRule' file. This issue allows for remote execution of the attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** A stack-based buffer overflow can be triggered remotely via the manipulation of the `keyword list/keyword` argument. The issue resides in the `formSetUrlFilter()` function within the '/goform/formSetUrlFilter' file. A stack-based buffer overflow occurs when a program writes more data to a buffer located on the stack than the buffer is allocated to hold, potentially leading to crashes or arbitrary code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** A stack-based buffer overflow occurs in the `formSetProtocolFilter()` function within the `/goform/formSetProtocolFilter` file. This issue allows a remote attacker to trigger the overflow by manipulating the `protocol name` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TRENDnet TEW-432BRP version 3.10B20 **Description** A stack-based buffer overflow can be triggered remotely via the `formSetDomainFilter()` function within the `/goform/formSetDomainFilter` file. This occurs when manipulating the `blocked domain`, `permitted domain`, `blocked domain list`, or `permitted domain list` arguments. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.