Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
CVE-2026-9399: Edimax BR-6675nD: Remote Buffer Overflow in POST Request Handler
CVE-2026-9399
Summary
A security flaw in the Edimax BR-6675nD's POST Request Handler can be exploited remotely, allowing an attacker to potentially crash the device or execute malicious code. This issue affects devices running version 1.12. It's essential to update to the latest version to protect against potential attacks. We recommend checking with Edimax for the latest software updates and following their instructions for installation.
Original title
A vulnerability was detected in Edimax BR-6675nD 1.12. This vulnerability affects the function formsetPPPoE of the file /goform/formsetPPPoE of the component POST Request Handler. Performing a mani...
Original description
A vulnerability was detected in Edimax BR-6675nD 1.12. This vulnerability affects the function formsetPPPoE of the file /goform/formsetPPPoE of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in buffer overflow. It is possible to initiate the attack remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-120
Classic Buffer Overflow
Published: 24 May 2026 · Updated: 31 May 2026 · First seen: 26 May 2026