cbcvebase.

Edimax Br-6476Ac Firmware vulnerabilities

5 known vulnerabilities affecting edimax/br-6476ac_firmware.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-48419P2HIGHCVSS 8.8v1.062025-01-27
CVE-2024-48419 [HIGH] CWE-77 CVE-2024-48419: Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 suffers from Command Injection issues in /bin/ Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 suffers from Command Injection issues in /bin/goahead. Specifically, these issues can be triggered through /goform/tracerouteDiagnosis, /goform/pingDiagnosis, and /goform/fromSysToolPingCmd Each of these issues allows an attacker with access to the web interface to inject and execute arbitrary shell
nvd
CVE-2024-48418P3HIGHCVSS 8.8v1.062025-01-27
CVE-2024-48418 [HIGH] CWE-352 CVE-2024-48418: In Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06, the request /goform/fromSetDDNS does not p In Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06, the request /goform/fromSetDDNS does not properly handle special characters in any of user provided parameters, allowing an attacker with access to the web interface to inject and execute arbitrary shell commands.
nvd
CVE-2024-48420P3HIGHCVSS 8.8v1.062025-01-27
CVE-2024-48420 [HIGH] CWE-120 CVE-2024-48420: Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Buffer Overflow via /goform/g Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Buffer Overflow via /goform/getWifiBasic.
nvd
CVE-2024-48416P3HIGHCVSS 8.8v1.062025-01-27
CVE-2024-48416 [HIGH] CWE-120 CVE-2024-48416: Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Buffer Overflow via /goform/f Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Buffer Overflow via /goform/fromSetLanDhcpsClientbinding.
nvd
CVE-2024-48417P4MEDIUMCVSS 5.2v1.062025-01-27
CVE-2024-48417 [MEDIUM] CWE-79 CVE-2024-48417: Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Cross Site Scripting (XSS) in Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Cross Site Scripting (XSS) in : /bin/goahead via /goform/setStaticRoute, /goform/fromSetFilterUrlFilter, and /goform/fromSetFilterClientFilter.
nvd
Edimax Br-6476Ac Firmware vulnerabilities | cvebase