Br 6478Ac Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:edimax:br-6478ac_firmware:*:*:*:*:*:*:*:*
part: o version: * update: *
| Vendor | Edimax (b21209bc-38b2-5a9c-baa2-25a5068c39e9) |
|---|---|
| Product | Br 6478Ac Firmware (52c954de-1d63-54ec-a4ce-0eecb0e224c9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-9443 |
vulnerable | 2026-06-03 15:29:30.175412 |
Edimax BR-6478AC POST Request formL2TPSetup buffer overflow
HIGH (8.8)
A security vulnerability has been detected in Edimax BR-6478AC 1.23. This vulnerability affects the function formL2TPSetup of the file /goform/formL2TPSetup of the component POST Request Handler. The manipulation of the argument L2TPUserName leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-25T08:45:07.806Z
Updated: 2026-05-26T13:13:23.424Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-9442 |
vulnerable | 2026-06-03 15:29:30.175264 |
Edimax BR-6478AC POST Request formiNICSiteSurvey buffer overflow
HIGH (8.8)
A weakness has been identified in Edimax BR-6478AC 1.23. This affects the function formiNICSiteSurvey of the file /goform/formiNICSiteSurvey of the component POST Request Handler. Executing a manipulation of the argument selSSID can lead to buffer overflow. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-25T08:30:10.571Z
Updated: 2026-05-28T13:06:57.485Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-9441 |
vulnerable | 2026-06-03 15:29:30.174982 |
Edimax BR-6478AC POST Request formiNICbasic command injection
MEDIUM (6.3)
A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formiNICbasic of the file /goform/formiNICbasic of the component POST Request Handler. Performing a manipulation of the argument rootAPmac results in command injection. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-25T08:15:09.211Z
Updated: 2026-05-26T16:00:18.869Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-9440 |
vulnerable | 2026-06-03 15:29:30.174772 |
Edimax BR-6478AC POST Request formAccept command injection
MEDIUM (6.3)
A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulnerability is the function formAccept of the file /goform/formAccept of the component POST Request Handler. Such manipulation of the argument submit-url leads to command injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-25T08:00:14.196Z
Updated: 2026-05-28T18:00:40.914Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-10166 |
vulnerable | 2026-06-03 15:14:43.413126 |
Edimax BR-6478AC POST Request formWlbasic command injection
MEDIUM (6.3)
A vulnerability was determined in Edimax BR-6478AC 1.23. The affected element is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized.
Published: 2026-05-31T03:15:08.139Z
Updated: 2026-06-01T15:06:21.344Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-10165 |
vulnerable | 2026-06-03 15:14:43.412958 |
Edimax BR-6478AC POST Request formWanTcpipSetup stack-based overflow
HIGH (8.8)
A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manipulation of the argument pppUserName leads to stack-based buffer overflow. The attack may be performed from remote. The exploit is publicly available and might be used.
Published: 2026-05-31T03:00:10.931Z
Updated: 2026-06-01T13:28:00.283Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-10164 |
vulnerable | 2026-06-03 15:14:43.412786 |
Edimax BR-6478AC POST Request formUSBFolder buffer overflow
HIGH (8.8)
A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ShareName/SelectName results in buffer overflow. The attack can be executed remotely. The exploit has been made public and could be used.
Published: 2026-05-31T02:30:08.775Z
Updated: 2026-06-02T02:19:37.543Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-10163 |
vulnerable | 2026-06-03 15:14:43.412614 |
Edimax BR-6478AC POST Request formUSBAccount buffer overflow
HIGH (8.8)
A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of the argument UserName/Password leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.
Published: 2026-05-31T02:15:08.626Z
Updated: 2026-06-02T02:18:07.614Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-10127 |
vulnerable | 2026-06-03 15:14:43.403232 |
Edimax BR-6478AC POST Request formStaDrvSetup command injection
MEDIUM (6.3)
A weakness has been identified in Edimax BR-6478AC 1.23. This affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks.
Published: 2026-05-30T16:30:08.799Z
Updated: 2026-06-02T02:13:22.781Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-10126 |
vulnerable | 2026-06-03 15:14:43.403003 |
Edimax BR-6478AC POST Request formQoS buffer overflow
HIGH (8.8)
A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the argument selSSID results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks.
Published: 2026-05-30T16:15:07.823Z
Updated: 2026-06-01T14:55:05.171Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-10125 |
vulnerable | 2026-06-03 15:14:43.402630 |
Edimax BR-6478AC POST Request formPPPoESetup stack-based overflow
HIGH (8.8)
A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulnerability is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. The manipulation of the argument pppUserName leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be used.
Published: 2026-05-30T16:00:12.552Z
Updated: 2026-06-01T15:25:07.859Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.