cbcvebase.

Edimax Ew-7478Apc vulnerabilities

9 known vulnerabilities affecting edimax/ew-7478apc.

Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH6MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2026-13564P2HIGHCVSS 8.8v1.042026-06-29
CVE-2026-13564 [HIGH] CWE-119 CVE-2026-13564: A vulnerability was found in Edimax EW-7478APC 1.04. Affected is the function formPPPoESetup of the A vulnerability was found in Edimax EW-7478APC 1.04. Affected is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made public and could be used. The
nvd
CVE-2026-13580P2HIGHCVSS 8.8v1.042026-06-29
CVE-2026-13580 [HIGH] CWE-119 CVE-2026-13580: A security vulnerability has been detected in Edimax EW-7478APC 1.04. This affects the function form A security vulnerability has been detected in Edimax EW-7478APC 1.04. This affects the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the argument selSSID leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used. The vendor
nvd
CVE-2026-13582P2HIGHCVSS 8.8v1.042026-06-29
CVE-2026-13582 [HIGH] CWE-119 CVE-2026-13582: A flaw has been found in Edimax EW-7478APC 1.04. This issue affects the function formUSBAccount of t A flaw has been found in Edimax EW-7478APC 1.04. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. This manipulation of the argument UserName/Password causes buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be used. The vend
nvd
CVE-2026-13563P2HIGHCVSS 8.8v1.042026-06-29
CVE-2026-13563 [HIGH] CWE-119 CVE-2026-13563: A vulnerability has been found in Edimax EW-7478APC 1.04. This impacts the function formL2TPSetup of A vulnerability has been found in Edimax EW-7478APC 1.04. This impacts the function formL2TPSetup of the file /goform/formL2TPSetup of the component POST Request Handler. Such manipulation of the argument L2TPUserName leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma
nvd
CVE-2026-13583P2HIGHCVSS 8.8v1.042026-06-29
CVE-2026-13583 [HIGH] CWE-119 CVE-2026-13583: A vulnerability has been found in Edimax EW-7478APC 1.04. Impacted is the function formUSBFolder of A vulnerability has been found in Edimax EW-7478APC 1.04. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. Such manipulation of the argument ShareName/SelectName leads to buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
nvd
CVE-2026-13562P2HIGHCVSS 8.8v1.042026-06-29
CVE-2026-13562 [HIGH] CWE-119 CVE-2026-13562: A flaw has been found in Edimax EW-7478APC 1.04. This affects the function formiNICSiteSurvey of the A flaw has been found in Edimax EW-7478APC 1.04. This affects the function formiNICSiteSurvey of the file /goform/formiNICSiteSurvey of the component POST Request Handler. This manipulation of the argument selSSID causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor was cont
nvd
CVE-2026-13581P3MEDIUMCVSS 6.3v1.042026-06-29
CVE-2026-13581 [MEDIUM] CWE-77 CVE-2026-13581: A vulnerability was detected in Edimax EW-7478APC 1.04. This vulnerability affects the function form A vulnerability was detected in Edimax EW-7478APC 1.04. This vulnerability affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. The manipulation of the argument rootAPmac results in os command injection. The attack can be executed remotely. The exploit is now public and may be used. The vendo
nvd
CVE-2026-13560P3MEDIUMCVSS 6.3v1.042026-06-29
CVE-2026-13560 [MEDIUM] CWE-77 CVE-2026-13560: A security vulnerability has been detected in Edimax EW-7478APC 1.04. The affected element is the fu A security vulnerability has been detected in Edimax EW-7478APC 1.04. The affected element is the function formAccept of the file /goform/formAccept of the component POST Request Handler. The manipulation of the argument submit-url leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed publicl
nvd
CVE-2026-13561P3MEDIUMCVSS 6.3v1.042026-06-29
CVE-2026-13561 [MEDIUM] CWE-77 CVE-2026-13561: A vulnerability was detected in Edimax EW-7478APC 1.04. The impacted element is the function formiNI A vulnerability was detected in Edimax EW-7478APC 1.04. The impacted element is the function formiNICbasic of the file /goform/formiNICbasic of the component POST Request Handler. The manipulation of the argument rootAPmac results in os command injection. The attack may be performed from remote. The exploit is now public and may be used. The vendor w
nvd
Edimax Ew-7478Apc vulnerabilities | cvebase