CVE-2026-9345
HighSummary
A vulnerability was detected in Edimax EW-7438RPn up to version 1.31, affecting the function formWizSurvey in the file /goform/formWizSurvey. Manipulating the arguments ssid/manualssid/ip/mask/gateway results in a buffer overflow.
Risk Assessment
The attack can be carried out remotely, posing a serious threat to the security of the device and the network. The publicly available exploit may be used by potential attackers.
Recommendation
It is recommended to update the device to the latest firmware version to mitigate the risk associated with this vulnerability. Additionally, monitoring network traffic for potential attack attempts is advised.
Original NVD description (English source)
A vulnerability was detected in Edimax EW-7438RPn up to 1.31. This affects the function formWizSurvey of the file /goform/formWizSurvey of the component webs. Performing a manipulation of the argument ssid/manualssid/ip/mask/gateway results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

