Skip to main content

Edimax EW-7438RPn CVE-2026-9361

| EUVDEUVD-2026-31574 LOW
Command Injection (CWE-77)
2026-05-24 VulDB GHSA-v76m-wvxr-74j2
2.1
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
2.1 LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
Severity Changed
May 26, 2026 - 19:37 NVD
MEDIUM LOW
CVSS changed
May 26, 2026 - 19:37 NVD
6.3 (MEDIUM) 2.1 (LOW)
Analysis Generated
May 24, 2026 - 07:45 vuln.today

DescriptionCVE.org

A weakness has been identified in Edimax EW-7438RPn 1.12. This affects the function formAccept of the file /goform/formAccep of the component POST Request Handler. This manipulation of the argument submit-url causes command injection. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Remote command injection in Edimax EW-7438RPn 1.12 allows authenticated attackers to execute arbitrary OS commands by manipulating the submit-url parameter in the formAccept function via /goform/formAccep endpoint. Public exploit code is available (EPSS not provided in input data). Vendor was notified but has not responded or issued a patch, leaving devices vulnerable to takeover by users with low-level credentials.

Technical ContextAI

This vulnerability exploits a command injection flaw (CWE-77) in the POST request handler of the Edimax EW-7438RPn wireless range extender firmware version 1.12. The affected component is the formAccept function accessible via the /goform/formAccep endpoint, which improperly sanitizes the submit-url parameter before passing it to system shell commands. Command injection vulnerabilities occur when user-controlled data is incorporated into shell commands without proper validation or escaping, allowing attackers to break out of intended command context and execute arbitrary operating system commands. The CPE identifier cpe:2.3:a:edimax:ew-7438rpn:*:*:*:*:*:*:*:* confirms the affected product is Edimax's wireless networking device, specifically targeting the embedded web management interface that handles configuration changes through POST requests.

RemediationAI

No vendor-released patch is available at time of analysis - Edimax was notified during responsible disclosure but has not responded or issued security updates (CVSS temporal metric RL:X confirms no official fix). Organizations operating affected Edimax EW-7438RPn devices should implement the following compensating controls in order of effectiveness: First, restrict access to the web management interface by configuring IP-based access control lists to permit only trusted administrator source addresses, blocking all external and untrusted internal network access to TCP ports 80/443 on the device (trade-off: complicates remote management but eliminates network attack surface). Second, immediately change default administrative credentials to strong unique passwords if still in use, and audit for any unauthorized user accounts that could provide the PR:L authentication required for exploitation (trade-off: minimal, should be standard practice). Third, place affected devices on isolated management VLANs separate from production networks to limit post-exploitation lateral movement capabilities (trade-off: requires network segmentation infrastructure). Fourth, implement network-based intrusion detection signatures to monitor for command injection patterns in HTTP POST requests to /goform/formAccep containing shell metacharacters in the submit-url parameter (trade-off: requires IDS/IPS infrastructure and may generate false positives). Organizations with high-security requirements should consider replacing affected devices with actively maintained alternatives from vendors with established vulnerability response programs. Monitor Edimax security advisories at the vendor website and VulDB reference https://vuldb.com/vuln/365324 for potential future updates.

CVE-2026-9346 HIGH POC
7.4 May 24

Buffer overflow in Edimax EW-7438RPn WiFi range extender firmware up to version 1.31 enables authenticated remote attack

CVE-2026-9345 HIGH POC
7.4 May 24

Buffer overflow in Edimax EW-7438RPn WiFi range extender firmware versions up to 1.31 enables authenticated remote attac

CVE-2026-9482 HIGH POC
7.4 May 25

Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 wireless range extender allows remote attackers with low-privi

CVE-2026-9481 HIGH POC
7.4 May 25

Stack-based buffer overflow in the Edimax EW-7438RPn Wi-Fi range extender (firmware 1.31) allows remote authenticated at

CVE-2026-9480 HIGH POC
7.4 May 25

Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 Wi-Fi range extender allows remote attackers with low privileg

CVE-2026-9479 HIGH POC
7.4 May 25

Stack-based buffer overflow in the Edimax EW-7438RPn Wi-Fi range extender (firmware 1.31) allows authenticated remote at

CVE-2026-9463 HIGH POC
7.4 May 25

Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 range extender allows remote authenticated attackers to corrup

CVE-2026-9462 HIGH POC
7.4 May 25

Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 wireless range extender enables remote low-privileged attacker

CVE-2026-9461 HIGH POC
7.4 May 25

Stack-based buffer overflow in the Edimax EW-7438RPn Wi-Fi range extender (firmware 1.31) allows remote authenticated at

CVE-2026-9460 HIGH POC
7.4 May 25

Stack-based buffer overflow in Edimax EW-7438RPn 1.31 range extenders allows authenticated remote attackers to corrupt m

CVE-2026-9459 HIGH POC
7.4 May 25

Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 wireless range extender allows remote attackers with low privi

CVE-2026-9427 HIGH POC
7.4 May 25

Stack-based buffer overflow in Edimax EW-7438RPn 1.31 wireless range extenders allows remote authenticated attackers to

Share

CVE-2026-9361 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy