CVE Catalog

CVE-2026-9460

High
Published: Translated: NVD NIST

Summary

A weakness has been identified in Edimax EW-7438RPn 1.31, impacting the function formAccept of the file /goform/formAccept. Manipulating the argument submit-url can lead to stack-based buffer overflow.

Risk Assessment

The attack can be executed remotely, posing a serious threat to the security of the device and the network it is used in.

Recommendation

It is recommended to update the device to the latest firmware version or implement appropriate security measures to mitigate the risk of attack.

Original NVD description (English source)

A weakness has been identified in Edimax EW-7438RPn 1.31. This impacts the function formAccept of the file /goform/formAccept. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS