CVE-2026-7685

A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor...

CVE-2026-7683 Edimax BR-6428nC Web setWAN command injection

A weakness has been identified in Edimax BR-6428nC up to 1.16. This affects an unknown function of the file /goform/setWAN of the component Web Interface. This manipulation of the argument pppUserName/pptpUserName causes command injection. The attack can be initiated remotely. The exploit has bee...

CVE-2026-7683 Edimax BR-6428nC Web setWAN command injection

A weakness has been identified in Edimax BR-6428nC up to 1.16. This affects an unknown function of the file /goform/setWAN of the component Web Interface. This manipulation of the argument pppUserName/pptpUserName causes command injection. The attack can be initiated remotely. The exploit has bee...

PT-2026-36687

A weakness has been identified in Edimax BR-6428nC up to 1.16. This affects an unknown function of the file /goform/setWAN of the component Web Interface. This manipulation of the argument pppUserName/pptpUserName causes command injection. The attack can be initiated remotely. The exploit has bee...

PT-2026-36675

Name of the Vulnerable Software and Affected Versions Edimax BR-6208AC versions prior to 1.02 Description A buffer overflow can be triggered remotely via a manipulation of the pptpDfGateway argument within an unknown function of the '/goform/setWAN' file. Recommendations At the moment, there is n...

EUVD-2025-25878

Malicious code in bioql PyPI...

EUVD-2025-24123

Malicious code in bioql PyPI...

CVE-2025-9525

A flaw has been found in Linksys E1700 1.0.0.4.003. Affected by this vulnerability is the function setWan of the file /goform/setWan. This manipulation of the argument DeviceName/lanIp causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may...

CVE-2025-9525

The CVE-2025-9525 entry concerns Linksys E1700 firmware 1.0.0.4.003. A stack-based overflow arises in the setWan function of /goform/setWan when the DeviceName/lanIp arguments are manipulated. This vulnerability can be triggered remotely and, according to the sources, an exploit has been publishe...

CVE-2025-9525 Linksys E1700 setWan stack-based overflow

A flaw has been found in Linksys E1700 1.0.0.4.003. Affected by this vulnerability is the function setWan of the file /goform/setWan. This manipulation of the argument DeviceName/lanIp causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may...

CVE-2025-8830 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 setWan sub_3517C os command injection

A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function sub3517C of the file /goform/setWan. The manipulation of the argument Hostname leads to os command injection. The attack may be launched remotely. The...

CVE-2025-8830

The CVE-2025-8830 issue affects Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 devices up to 20250801. It centers on the function sub_3517C in /goform/setWan, where manipulating the Hostname argument leads to an OS command injection. The vulnerability can be triggered remotely and has had publ...

PT-2025-32496 · Linksys · Linksys Re9000 +5

Name of the Vulnerable Software and Affected Versions: Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 versions up to 20250801 Description: A vulnerability exists in Linksys range extenders. The issue is a stack-based buffer overflow triggered by manipulating the staticIp argument of th...

PT-2025-32518 · Linksys · Linksys Re7000 +5

Name of the Vulnerable Software and Affected Versions: Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 versions up to 20250801 Description: A vulnerability exists in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000. The issue is due to os command injection in the sub 3517C...