CVE-2026-10060 | TRENDnet TEW-432BRP 3.10B20 /goform/formSetRoute ip/mask/gateway command injection
ID: 51b6ad74-be6d-5205-a7f8-593a30ce0f25
STIX ID: report--51b6ad74-be6d-5205-a7f8-593a30ce0f25
Feed Name: VulDB Recent Entries
Threat Score
A critical remote command injection (CVE-2026-10060) affects TRENDnet TEW-432BRP (firmware 3.10B20) via the formSetRoute ip/mask/gateway parameter; a public proof-of-concept exploit exists on GitHub, the product is end-of-life (EOL) since 2009 and the vendor will not fix the issue, leaving replacement as the primary mitigation.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.