PT-2026-25545 · Trendnet · Tew-632Brp

Ic0Rner

Published

2026-03-15

Updated

2026-03-16

CVE-2026-4172

CVSS v2.0

8.3

High

Vector

AV:N/AC:L/Au:M/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-632BRP version 1.010B32

Description A flaw exists in TRENDnet TEW-632BRP that allows for a stack-based buffer overflow. This issue is located within the HTTP POST Request Handler component, specifically in the /ping response.cgi file. Manipulation of the ping ipaddr argument can trigger the overflow, and the attack can be performed remotely. The exploit for this issue is publicly available. The vendor was contacted regarding this disclosure but did not respond.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-121

Related Identifiers

CVE-2026-4172

Affected Products

Tew-632Brp

PT-2026-25545 · Trendnet · Tew-632Brp

CVE-2026-4172

Weakness Enumeration

Related Identifiers

Affected Products

References · 8