69 matches found
CVE-2026-7682
A security flaw has been discovered in Edimax BR-6208AC 1.02. The impacted element is the function setWAN of the file /goform/setWAN of the component L2TP Mode. The manipulation of the argument L2TPUserName results in command injection. It is possible to launch the attack remotely. The exploit ha...
CVE-2026-7685
A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor...
CVE-2026-7685
A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor...
CVE-2026-7682
A security flaw has been discovered in Edimax BR-6208AC 1.02. The impacted element is the function setWAN of the file /goform/setWAN of the component L2TP Mode. The manipulation of the argument L2TPUserName results in command injection. It is possible to launch the attack remotely. The exploit ha...
CVE-2026-7685
The CVE describes a buffer overflow in Edimax BR-6208AC (firmware up to 1.02) caused by manipulation of the argument pptpDfGateway in the file /goform/setWAN. The vulnerability may be exploited remotely; the exploit is public. The vendor was contacted but did not respond.
CVE-2026-7685 Edimax BR-6208AC setWAN buffer overflow
A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor...
CVE-2026-7685 Edimax BR-6208AC setWAN buffer overflow
A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor...
EUVD-2026-26820
A security flaw has been discovered in Edimax BR-6208AC 1.02. The impacted element is the function setWAN of the file /goform/setWAN of the component L2TP Mode. The manipulation of the argument L2TPUserName results in command injection. It is possible to launch the attack remotely. The exploit ha...
CVE-2026-7682
Edimax BR-6208AC (firmware 1.02) contains a vulnerability in the L2TP Mode setWAN function (/goform/setWAN). The L2TPUserName parameter can be manipulated to induce command injection. The issue is exploitable remotely and has publicly disclosed PoC/exploit code. Vendor did not respond to disclosu...
Edimax BR-6208AC 注入漏洞
The Edimax BR-6208AC is a wireless router produced by Edimax of Taiwan, China. Version 1.02 of the Edimax BR-6208AC has a vulnerability related to injection attacks. This vulnerability stems from the setWAN function in the L2TP Mode component, which processes the L2TPUserName parameter. This coul...
EDIMAX BR-6208AC 缓冲区错误漏洞
The EDIMAX BR-6208AC is a wireless broadband router produced by Edimax Corporation of Taiwan. Versions of the Edimax BR-6208AC prior to 1.02 contained a buffer overflow vulnerability. This vulnerability stemmed from an unknown function in the file/goform/setWAN, which handled the parameter...
PT-2026-36675
Name of the Vulnerable Software and Affected Versions Edimax BR-6208AC versions prior to 1.02 Description A buffer overflow can be triggered remotely via a manipulation of the pptpDfGateway argument within an unknown function of the '/goform/setWAN' file. Recommendations At the moment, there is n...
CVE-2026-1972
A vulnerability was found in Edimax BR-6208AC 21.02. The affected element is the function authcheckuserpass2. Performing a manipulation of the argument Username/Password results in use of default credentials. The attack may be initiated remotely. The exploit has been made public and could be used...
CVE-2026-1972
A vulnerability was found in Edimax BR-6208AC 21.02. The affected element is the function authcheckuserpass2. Performing a manipulation of the argument Username/Password results in use of default credentials. The attack may be initiated remotely. The exploit has been made public and could be used...
CVE-2026-1972
Edimax BR-6208AC (version 2_1.02) contains a vulnerability in the auth_check_userpass2 function. Manipulating the Username/Password arguments can lead to using default credentials, with remote exploit potential. The vulnerability impacts a product that is end-of-life; the vendor has stated they w...
CVE-2026-1972 Edimax BR-6208AC auth_check_userpass2 default credentials
A vulnerability was found in Edimax BR-6208AC 21.02. The affected element is the function authcheckuserpass2. Performing a manipulation of the argument Username/Password results in use of default credentials. The attack may be initiated remotely. The exploit has been made public and could be used...
EUVD-2026-5606
A vulnerability was found in Edimax BR-6208AC 21.02. The affected element is the function authcheckuserpass2. Performing a manipulation of the argument Username/Password results in use of default credentials. The attack may be initiated remotely. The exploit has been made public and could be used...
EDIMAX BR-6208AC 安全漏洞
The EDIMAX BR-6208AC is a wireless broadband router produced by Edimax Corporation of Taiwan. A security vulnerability exists in the Edimax BR-6208AC 21.02 version, which stems from incorrect handling of the Username/Password parameter. This vulnerability may allow unauthorized users to access th...
CVE-2025-70161
EDIMAX BR-6208AC V21.02 is vulnerable to Command Injection. This arises because the pppUserName field is directly passed to a shell command via the system function without proper sanitization. An attacker can exploit this by injecting malicious commands into the pppUserName field, allowing...
CVE-2025-70161
EDIMAX BR-6208AC V21.02 is vulnerable to Command Injection. This arises because the pppUserName field is directly passed to a shell command via the system function without proper sanitization. An attacker can exploit this by injecting malicious commands into the pppUserName field, allowing...