Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
CVE-2026-10164: Edimax BR-6478AC: Malicious File Upload via Buffer Overflow
CVE-2026-10164
Summary
A security issue affects the Edimax BR-6478AC router's ability to handle file uploads. If exploited, this issue could allow an attacker to execute malicious code on the router, potentially leading to unauthorized access or disruption of the network. We recommend that users update their router to the latest version to address this issue.
Original title
A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ...
Original description
A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ShareName/SelectName results in buffer overflow. The attack can be executed remotely. The exploit has been made public and could be used.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-120
Classic Buffer Overflow
Published: 31 May 2026 · Updated: 1 Jun 2026 · First seen: 31 May 2026