Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
CVE-2026-9345: Edimax EW-7438RPn: Remote Code Execution via Buffer Overflow
CVE-2026-9345
Summary
A security flaw in Edimax EW-7438RPn routers (up to version 1.31) allows hackers to remotely execute malicious code, potentially taking control of the router. This is a serious issue because it can be exploited by anyone with access to the router's settings. To protect yourself, we recommend updating your router to the latest version as soon as possible.
Original title
A vulnerability was detected in Edimax EW-7438RPn up to 1.31. This affects the function formWizSurvey of the file /goform/formWizSurvey of the component webs. Performing a manipulation of the argum...
Original description
A vulnerability was detected in Edimax EW-7438RPn up to 1.31. This affects the function formWizSurvey of the file /goform/formWizSurvey of the component webs. Performing a manipulation of the argument ssid/manualssid/ip/mask/gateway results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-120
Classic Buffer Overflow
Published: 24 May 2026 · Updated: 31 May 2026 · First seen: 26 May 2026