CVE Catalog

CVE-2026-9462

High
Published: Translated: NVD NIST

Summary

A vulnerability was detected in Edimax EW-7438RPn version 1.31, affecting the function formWpsProxyEnable in the file /goform/formWpsProxyEnable. Manipulation of the argument submit-url results in stack-based buffer overflow.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious threat to the security of the device and the network.

Recommendation

It is recommended to update the device to the latest firmware version to mitigate this vulnerability and to monitor network traffic for potential attacks.

Original NVD description (English source)

A vulnerability was detected in Edimax EW-7438RPn 1.31. Affected by this vulnerability is the function formWpsProxyEnable of the file /goform/formWpsProxyEnable. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack can be launched remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS