Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
CVE-2026-9360: Edimax EW-7438RPn: Remote Buffer Overflow Risk
CVE-2026-9360
Summary
A security flaw in the Edimax EW-7438RPn router's POST Request Handler can be exploited remotely, potentially allowing an attacker to execute malicious code. This issue has been publicly disclosed and may be used by attackers. We recommend that users contact the vendor for an update or consider replacing the router.
Original title
A security flaw has been discovered in Edimax EW-7438RPn 1.28a. Affected by this issue is the function formwlencrypt24g of the file /goform/formwlencrypt24g of the component POST Request Handler. T...
Original description
A security flaw has been discovered in Edimax EW-7438RPn 1.28a. Affected by this issue is the function formwlencrypt24g of the file /goform/formwlencrypt24g of the component POST Request Handler. The manipulation of the argument key1 results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-120
Classic Buffer Overflow
Published: 24 May 2026 · Updated: 31 May 2026 · First seen: 26 May 2026