Edimax BR-6478AC V3 formDebugDiagnosticRun sub_416898 os command injection_CVE-2025-14092

5.1 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A security vulnerability has been detected in Edimax BR-6478AC V3 1.0.15. This issue affects the function sub_416898 of the file /boafrm/formDebugDiagnosticRun. The manipulation of the argument host leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2025-14092

Source VulDB

Published Dec 5, 2025 at 16:02

Modified Dec 5, 2025 at 16:12

Affected Product

Vendor Edimax

Product BR-6478AC V3

Version 1.0.15

Affected Versions Edimax BR-6478AC V3 1.0.15

CWE Classification

CWE-78 CWE-77

References

{
    "lastseen": "",
    "description": "A security vulnerability has been detected in Edimax BR-6478AC V3 1.0.15. This issue affects the function sub_416898 of the file /boafrm/formDebugDiagnosticRun. The manipulation of the argument host leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2025-12-05T16:02:08.289Z",
    "modified": "2025-12-05T16:12:56.960Z",
    "type": "cve",
    "title": "Edimax BR-6478AC V3 formDebugDiagnosticRun sub_416898 os command injection",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.334482\nhttps://vuldb.com/?ctiid.334482\nhttps://vuldb.com/?submit.696632\nhttps://github.com/Kriswu1337/CVE/blob/main/EDIMAX/1/1.md",
    "id": "CVE-2025-14092",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78",
        "CWE-77"
    ],
    "cvelist": null,
    "sourceData": "Edimax BR-6478AC V3 1.0.15",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "BR-6478AC V3",
    "version": "1.0.15",
    "vendor": "Edimax",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}