CVE-2018-19242: Buffer Overflow
First published: Thu Dec 20 2018(Updated: )
Buffer overflow in apply.cgi on TRENDnet TEW-632BRP 1.010B32 and TEW-673GRU devices allows attackers to hijack the control flow to any attacker-specified location by crafting a POST request payload (with authentication).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Trendnet Tew-632brp Firmware | =1.010b32 | |
| TRENDnet TEW-632BRP | ||
| Trendnet Tew-673gru Firmware | =1.00b40 | |
| TRENDnet TEW-673GRU |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-19242?
CVE-2018-19242 is a vulnerability that exists in TRENDnet TEW-632BRP and TEW-673GRU devices, which allows attackers to hijack the control flow by crafting a specific POST request payload.
What is the severity of CVE-2018-19242?
CVE-2018-19242 has a severity rating of 8.8 (high).
How does CVE-2018-19242 affect TRENDnet TEW-632BRP?
CVE-2018-19242 affects TRENDnet TEW-632BRP devices with firmware version 1.010B32, allowing attackers to exploit a buffer overflow vulnerability.
How does CVE-2018-19242 affect TRENDnet TEW-673GRU?
CVE-2018-19242 affects TRENDnet TEW-673GRU devices with firmware version 1.01B40, allowing attackers to exploit a buffer overflow vulnerability.
How do I fix CVE-2018-19242?
To fix CVE-2018-19242, it is recommended to update the firmware of the affected devices to a version that addresses this vulnerability.
- collector/nvd-index
- vendor/trendnet
- canonical/trendnet tew-632brp firmware
- version/trendnet tew-632brp firmware/1.010b32
- canonical/trendnet tew-632brp
- canonical/trendnet tew-673gru firmware
- version/trendnet tew-673gru firmware/1.00b40
- canonical/trendnet tew-673gru