Aggregator

Submit #818453 / VDB-367302

A vulnerability categorized as critical has been discovered in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetProtocolFilter of the file /goform/formSetProtocolFilter. Such manipulation of the argument protocol_name leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is listed as CVE-2026-10122. The attack may be performed from remote. In addition, an exploit is available. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities."

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. It has been rated as critical. The impacted element is the function formSetUrlFilter of the file /goform/formSetUrlFilter. This manipulation of the argument keyword_list/keyword causes stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is tracked as CVE-2026-10121. The attack is possible to be carried out remotely. Moreover, an exploit is present. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities."

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. It has been declared as critical. The affected element is the function formSetFirewallRule of the file /goform/formSetFirewallRule. The manipulation of the argument firewall_name results in stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is identified as CVE-2026-10120. The attack can be executed remotely. Additionally, an exploit exists. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities."

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. It has been classified as critical. Impacted is the function formSetMACFilter of the file /goform/formSetMACFilter. The manipulation of the argument filter_name leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is referenced as CVE-2026-10119. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor explains: "This product has been EOL for 15 years (since 2009). As the item has been EOL for such a long time, we are not able to replicate or fix any vulnerabilities."

Submit #818239 / VDB-367301

A vulnerability was found in Open5GS up to 2.7.7 and classified as problematic. This issue affects the function ogs_pool_id_calloc in the library /lib/sbi/nghttp2-server.c. Executing a manipulation can lead to denial of service. The identification of this vulnerability is CVE-2026-10117. The attack may be launched remotely. Furthermore, there is an exploit available. It is best practice to apply a patch to resolve this issue.

A vulnerability has been found in Open5GS up to 2.7.7 and classified as problematic. This vulnerability affects the function ogs_sbi_xact_add in the library /lib/core/ogs-timer.c of the component ue-authentications Endpoint. Performing a manipulation results in denial of service. This vulnerability was named CVE-2026-10116. The attack may be initiated remotely. In addition, an exploit is available. Applying a patch is the recommended action to fix this issue.

A vulnerability, which was classified as problematic, was found in Open5GS up to 2.7.7. This affects an unknown part in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. Such manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2026-10115. The attack can be launched remotely. Moreover, an exploit is present. It is advisable to implement a patch to correct this issue.

A vulnerability, which was classified as problematic, has been found in Open5GS up to 2.7.7. Affected by this issue is the function handle_scp_info in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. This manipulation causes out-of-bounds write. This vulnerability is handled as CVE-2026-10114. The attack can be initiated remotely. Additionally, an exploit exists. To fix this issue, it is recommended to deploy a patch.

A vulnerability classified as problematic was found in Open5GS up to 2.7.7. Affected by this vulnerability is an unknown functionality in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. The manipulation results in denial of service. This vulnerability is known as CVE-2026-10113. It is possible to launch the attack remotely. Furthermore, an exploit is available. A patch should be applied to remediate this issue.

Submit #814767 / VDB-367300

Submit #814766 / VDB-367299

Submit #814763 / VDB-367298

Submit #814762 / VDB-367297

Submit #814761 / VDB-367296

Submit #818586 / VDB-367295

Submit #818585 / VDB-367294

Submit #818583 / VDB-367293

Submit #818582 / VDB-367292