Buffer Overflow Vulnerability in TRENDnet TEW-632BRP Router
CVE-2019-11418

9.8CRITICAL

Key Information:

Vendor: Trendnet
Status: Tew-632brp Firmware
Vendor: CVE Published:; 22 April 2019

What is CVE-2019-11418?

The TRENDnet TEW-632BRP router is susceptible to a buffer overflow vulnerability via the SOAPACTION:HNAP1 interface, triggered by excessively long strings. This flaw could allow malicious users to execute arbitrary code, potentially compromising the device's functionality and security. Users of the affected product should implement appropriate security measures to protect their devices from such vulnerabilities.

References

https://github.com/zyw-200/IOTFuzzer/blob/master/Trendnet...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2019
Vulnerability Reserved
Apr 21, 2019