CVE Catalog

CVE-2026-9345

High
Published: Translated: NVD NIST

Summary

A vulnerability was detected in Edimax EW-7438RPn up to version 1.31, affecting the function formWizSurvey in the file /goform/formWizSurvey. Manipulating the arguments ssid/manualssid/ip/mask/gateway results in a buffer overflow.

Risk Assessment

The attack can be carried out remotely, posing a serious threat to the security of the device and the network. The publicly available exploit may be used by potential attackers.

Recommendation

It is recommended to update the device to the latest firmware version to mitigate the risk associated with this vulnerability. Additionally, monitoring network traffic for potential attack attempts is advised.

Original NVD description (English source)

A vulnerability was detected in Edimax EW-7438RPn up to 1.31. This affects the function formWizSurvey of the file /goform/formWizSurvey of the component webs. Performing a manipulation of the argument ssid/manualssid/ip/mask/gateway results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS