GCVE - cpe:2.3:h:edimax:br-6288acl:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:edimax:br-6288acl:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Edimax (`b21209bc-38b2-5a9c-baa2-25a5068c39e9`)
Product	Br 6288Acl (`373957a2-e037-5d34-9264-2cfd1956fb35`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-1971`	not_vulnerable	2026-06-03 15:15:43.836246	Edimax BR-6288ACL wiz_WISP24gmanual.asp wiz_WISP24gmanual cross site scripting LOW (2.4) A vulnerability has been found in Edimax BR-6288ACL up to 1.12. Impacted is the function wiz_WISP24gmanual of the file wiz_WISP24gmanual.asp. Such manipulation of the argument manualssid leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor confirms that the affected product is end-of-life. They confirm that they "will issue a consolidated Security Advisory on our official support website." This vulnerability only affects products that are no longer supported by the maintainer. Published: 2026-02-06T00:02:07.694Z Updated: 2026-02-23T09:19:16.795Z Open on db.gcve.eu Reference links https://vuldb.com/?id.344493 https://vuldb.com/?ctiid.344493 https://vuldb.com/?submit.743318 https://tzh00203.notion.site/EDIMAX-BR6288ACL-v1-12-XSS-via-wiz_WISP24gmanual-asp-Configuration-2eeb5c52018a802e8ed9f6d000f7a6aa?source=copy_link	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-1612`	not_vulnerable	2026-06-03 14:59:05.883538	Edimax BR-6288ACL wireless5g_basic.asp cross site scripting LOW (3.5) A vulnerability was found in Edimax BR-6288ACL 1.30. It has been declared as problematic. This vulnerability affects unknown code of the file wireless5g_basic.asp. The manipulation of the argument SSID leads to cross site scripting. The attack can be initiated remotely. The vendor was contacted early about this disclosure but did not respond in any way. Published: 2025-02-24T02:31:03.813Z Updated: 2025-02-24T11:42:22.243Z Open on db.gcve.eu Reference links https://vuldb.com/?id.296602 https://vuldb.com/?ctiid.296602 https://vuldb.com/?submit.501309	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-33722`	not_vulnerable	2026-06-03 14:52:14.567371	Details available EDIMAX BR-6288ACL v1.12 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the pppUserName parameter. Published: 2023-05-31T00:00:00.000Z Updated: 2025-01-10T15:01:10.709Z Open on db.gcve.eu Reference links https://shimo.im/docs/pmkxQ1GQ4DTowANr https://docs.google.com/document/d/1KNuU0nVd4oHMZiKgfs45wK2yA4N6K7q4/edit?usp=sharing&ouid=108638774561085298954&rtpof=true&sd=true	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.