CVE-2026-9402 in BR-6675nDinformation

Résumé

par MITRE • 26/05/2026

A vulnerability was found in Edimax BR-6675nD 1.12. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component POST Request Handler. The manipulation of the argument ateFunc/ateGain/ateRate/ateChan/ateTxCount/e2pTx2Power1/e2pTx2Power2/e2pTx2Power3/e2pTx2Power4/e2pTx2Power5/e2pTx2Power6/e2pTx2Power7/e2pTxPower1/e2pTxPower2/e2pTxPower3/e2pTxPower4/e2pTxPower5/e2pTxPower6/e2pTxPower7/ateTxFreqOffset/ateMode/ateMacID/ateBW/ateAntenna/e2pTxFreqOffset/e2pTxPwDeltaB/e2pTxPwDeltaG/e2pTxPwDeltaMix/readE2P/e2pTxPwDeltaN results in command injection. The attack can be launched remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgation

26/05/2026

Modérer

accepté

Entrée

VDB-365383

CPE

prêt

CWE

CWE-77 (confirmé)

Exploitation

Télécharger

CVSS

6.3 (VulDB)

EPSS

0.01409

KEV

non

Activités

faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-9402
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-9402
CVE Details	https://www.cvedetails.com/cve/CVE-2026-9402/

◂ Précédent Aperçu Suivant ▸

Do you know our Splunk app?

Download it now for free!