CVE-2026-10182 – TRENDnet TEW-432BRP formWlanSetup command injection

CVE ID :CVE-2026-10182

Published : May 31, 2026, 2:16 p.m. | 15 minutes ago

Description :A vulnerability was determined in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formWlanSetup of the file /goform/formWlanSetup. Executing a manipulation of the argument enrollee can lead to command injection. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor explains: “This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities.” This vulnerability only affects products that are no longer supported by the maintainer.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-10186 – code-projects Online Hospital Management System patient.php sql injection

CVE-2026-10185 – SourceCodester Hospitals Patient Records Management System Users.php save sql injection

CVE-2026-10184 – SourceCodester Hospitals Patient Records Management System Users.php delete sql injection

CVE-2026-10183 – TRENDnet TEW-432BRP formWlanSetup stack-based overflow