A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the argument selSSID results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks.
PUBLISHED5.2Operating systemCWE-120CWE-119
Edimax BR-6478AC POST Request formQoS buffer overflow
Problem type
Affected products
Edimax
BR-6478AC
1.23 - AFFECTED
References
VDB-367303 | Edimax BR-6478AC POST Request formQoS buffer overflow
https://vuldb.com/vuln/367303
VDB-367303 | CTI Indicators (IOB, IOC, IOA)
https://vuldb.com/vuln/367303/cti
Submit #818454 | Edimax BR6478ACV2 BR6478ACV2_v1.23 Buffer Overflow
https://vuldb.com/submit/818454
lavender-bicycle-a5a.notion.site
https://lavender-bicycle-a5a.notion.site/EDIMAX-BR6478ACV2-formQoS-34b53a41781f804e9ddfe771c426d9b2?source=copy_link
JSON source
https://cveawg.mitre.org/api/cve/CVE-2026-10126Click to expand
{
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"cveMetadata": {
"cveId": "CVE-2026-10126",
"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"assignerShortName": "VulDB",
"dateUpdated": "2026-05-30T16:15:07.823Z",
"dateReserved": "2026-05-29T17:24:33.912Z",
"datePublished": "2026-05-30T16:15:07.823Z",
"state": "PUBLISHED"
},
"containers": {
"cna": {
"providerMetadata": {
"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"shortName": "VulDB",
"dateUpdated": "2026-05-30T16:15:07.823Z"
},
"title": "Edimax BR-6478AC POST Request formQoS buffer overflow",
"descriptions": [
{
"lang": "en",
"value": "A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the argument selSSID results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks."
}
],
"affected": [
{
"vendor": "Edimax",
"product": "BR-6478AC",
"cpes": [
"cpe:2.3:o:edimax:br-6478ac_firmware:*:*:*:*:*:*:*:*"
],
"modules": [
"POST Request Handler"
],
"versions": [
{
"version": "1.23",
"status": "affected"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"lang": "en",
"description": "Buffer Overflow",
"cweId": "CWE-120",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"lang": "en",
"description": "Memory Corruption",
"cweId": "CWE-119",
"type": "CWE"
}
]
}
],
"references": [
{
"url": "https://vuldb.com/vuln/367303",
"name": "VDB-367303 | Edimax BR-6478AC POST Request formQoS buffer overflow",
"tags": [
"vdb-entry",
"technical-description"
]
},
{
"url": "https://vuldb.com/vuln/367303/cti",
"name": "VDB-367303 | CTI Indicators (IOB, IOC, IOA)",
"tags": [
"signature",
"permissions-required"
]
},
{
"url": "https://vuldb.com/submit/818454",
"name": "Submit #818454 | Edimax BR6478ACV2 BR6478ACV2_v1.23 Buffer Overflow",
"tags": [
"third-party-advisory"
]
},
{
"url": "https://lavender-bicycle-a5a.notion.site/EDIMAX-BR6478ACV2-formQoS-34b53a41781f804e9ddfe771c426d9b2?source=copy_link",
"tags": [
"exploit"
]
}
],
"metrics": [
{},
{
"cvssV3_1": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
"baseScore": 8.8,
"baseSeverity": "HIGH"
}
},
{
"cvssV3_0": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R",
"baseScore": 8.8,
"baseSeverity": "HIGH"
}
},
{
"cvssV2_0": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR",
"baseScore": 9
}
}
],
"timeline": [
{
"time": "2026-05-29T00:00:00.000Z",
"lang": "en",
"value": "Advisory disclosed"
},
{
"time": "2026-05-29T02:00:00.000Z",
"lang": "en",
"value": "VulDB entry created"
},
{
"time": "2026-05-29T19:29:43.000Z",
"lang": "en",
"value": "VulDB entry last update"
}
],
"credits": [
{
"lang": "en",
"value": "wxhwxhwxh_mie (VulDB User)",
"type": "reporter"
}
]
}
}
}