CVE-2026-9381
HighSummary
A vulnerability was detected in Edimax BR-6675nD 1.12 affecting the function formPPPoESetup in the file /goform/formPPPoESetup. Manipulating the argument pppUserName results in buffer overflow, which can be exploited remotely.
Risk Assessment
An attacker may remotely exploit this vulnerability, posing a serious threat to the security of the device and the network.
Recommendation
It is recommended to update the device firmware to the latest version to mitigate this vulnerability and to monitor logs for potential attack attempts.
Original NVD description (English source)
A vulnerability was detected in Edimax BR-6675nD 1.12. Affected by this vulnerability is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

