TRENDnet TEW-411BRP+ HTTP Request Handler Null Pointer Dereference Vulnerability

Vulnerability

A null pointer dereference vulnerability has been identified in the TRENDnet TEW-411BRP+ router, specifically in version 2.07. The issue arises in the HTTP request handler, where the function sub_401DB0 fails to properly manage pointers, allowing for a potential denial-of-service condition. This vulnerability can only be exploited from within the local network.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the device to become unresponsive or unavailable.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TRENDnet TEW-411BRP+ HTTP Request Handler Null Pointer Dereference Vulnerability

Vulnerability

Impact

Affected Products

TRENDnet TEW-411BRP+

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating