CVE 8.7 HIGH

Edimax EW-7478APC POST Request formPPPoESetup stack-based overflow_CVE-2026-13564

8.7 / 10
HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was found in Edimax EW-7478APC 1.04. Affected is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

Stack-based buffer overflow in Edimax EW-7478APC 1.04 via manipulation of the pppUserName argument in the formPPPoESetup function

Basic Information

ID CVE-2026-13564
Source VulDB
Published Jun 29, 2026 at 11:45
Modified Jun 29, 2026 at 13:29

Affected Product

Vendor Edimax
Product EW-7478APC
Version 1.04
Affected Versions Edimax EW-7478APC 1.04

CWE Classification

AI Assessment

AI Score 8.7 / 10
AI Severity High
Vendor Edimax
Product EW-7478APC
Version 1.04

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.