CVE 8.7 HIGH

Edimax EW-7438RPn formLicence stack-based overflow_CVE-2026-9463

May 25, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A flaw has been found in Edimax EW-7438RPn 1.31. Affected by this issue is the function formLicence of the file /goform/formLicence. This manipulation of the argument submit-url causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

Stack-based buffer overflow vulnerability in Edimax EW-7438RPn 1.31 due to the manipulation of the submit-url argument in the formLicence function, allowing remote attacks.

Basic Information

ID CVE-2026-9463

Source VulDB

Published May 25, 2026 at 13:45

Affected Product

Vendor Edimax

Product EW-7438RPn

Version 1.31

Affected Versions Edimax EW-7438RPn 1.31

CWE Classification

CWE-121 CWE-119

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor Edimax

Product EW-7438RPn

Version 1.31

References

{
    "lastseen": "",
    "description": "A flaw has been found in Edimax EW-7438RPn 1.31. Affected by this issue is the function formLicence of the file /goform/formLicence. This manipulation of the argument submit-url causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2026-05-25T13:45:08.371Z",
    "modified": "2026-05-25T13:45:08.371Z",
    "type": "cve",
    "title": "Edimax EW-7438RPn formLicence stack-based overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/365444\nhttps://vuldb.com/vuln/365444/cti\nhttps://vuldb.com/submit/813900\nhttps://github.com/wudipjq/my_vuln/blob/main/Edimax/vuln_16/16.md",
    "id": "CVE-2026-9463",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "Edimax EW-7438RPn 1.31",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "EW-7438RPn",
    "version": "1.31",
    "vendor": "Edimax",
    "ai_description": "Stack-based buffer overflow vulnerability in Edimax EW-7438RPn 1.31 due to the manipulation of the submit-url argument in the formLicence function, allowing remote attacks.",
    "ai_severity": "High",
    "ai_vendor": "Edimax",
    "ai_product": "EW-7438RPn",
    "ai_version": "1.31",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply