Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
3DescriptionCVE.org
A weakness has been identified in Edimax EW-7438RPn 1.12. This affects the function formAccept of the file /goform/formAccep of the component POST Request Handler. This manipulation of the argument submit-url causes command injection. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
AnalysisAI
Remote command injection in Edimax EW-7438RPn 1.12 allows authenticated attackers to execute arbitrary OS commands by manipulating the submit-url parameter in the formAccept function via /goform/formAccep endpoint. Public exploit code is available (EPSS not provided in input data). Vendor was notified but has not responded or issued a patch, leaving devices vulnerable to takeover by users with low-level credentials.
Technical ContextAI
This vulnerability exploits a command injection flaw (CWE-77) in the POST request handler of the Edimax EW-7438RPn wireless range extender firmware version 1.12. The affected component is the formAccept function accessible via the /goform/formAccep endpoint, which improperly sanitizes the submit-url parameter before passing it to system shell commands. Command injection vulnerabilities occur when user-controlled data is incorporated into shell commands without proper validation or escaping, allowing attackers to break out of intended command context and execute arbitrary operating system commands. The CPE identifier cpe:2.3:a:edimax:ew-7438rpn:*:*:*:*:*:*:*:* confirms the affected product is Edimax's wireless networking device, specifically targeting the embedded web management interface that handles configuration changes through POST requests.
RemediationAI
No vendor-released patch is available at time of analysis - Edimax was notified during responsible disclosure but has not responded or issued security updates (CVSS temporal metric RL:X confirms no official fix). Organizations operating affected Edimax EW-7438RPn devices should implement the following compensating controls in order of effectiveness: First, restrict access to the web management interface by configuring IP-based access control lists to permit only trusted administrator source addresses, blocking all external and untrusted internal network access to TCP ports 80/443 on the device (trade-off: complicates remote management but eliminates network attack surface). Second, immediately change default administrative credentials to strong unique passwords if still in use, and audit for any unauthorized user accounts that could provide the PR:L authentication required for exploitation (trade-off: minimal, should be standard practice). Third, place affected devices on isolated management VLANs separate from production networks to limit post-exploitation lateral movement capabilities (trade-off: requires network segmentation infrastructure). Fourth, implement network-based intrusion detection signatures to monitor for command injection patterns in HTTP POST requests to /goform/formAccep containing shell metacharacters in the submit-url parameter (trade-off: requires IDS/IPS infrastructure and may generate false positives). Organizations with high-security requirements should consider replacing affected devices with actively maintained alternatives from vendors with established vulnerability response programs. Monitor Edimax security advisories at the vendor website and VulDB reference https://vuldb.com/vuln/365324 for potential future updates.
More in Ew 7438Rpn
View allBuffer overflow in Edimax EW-7438RPn WiFi range extender firmware up to version 1.31 enables authenticated remote attack
Buffer overflow in Edimax EW-7438RPn WiFi range extender firmware versions up to 1.31 enables authenticated remote attac
Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 wireless range extender allows remote attackers with low-privi
Stack-based buffer overflow in the Edimax EW-7438RPn Wi-Fi range extender (firmware 1.31) allows remote authenticated at
Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 Wi-Fi range extender allows remote attackers with low privileg
Stack-based buffer overflow in the Edimax EW-7438RPn Wi-Fi range extender (firmware 1.31) allows authenticated remote at
Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 range extender allows remote authenticated attackers to corrup
Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 wireless range extender enables remote low-privileged attacker
Stack-based buffer overflow in the Edimax EW-7438RPn Wi-Fi range extender (firmware 1.31) allows remote authenticated at
Stack-based buffer overflow in Edimax EW-7438RPn 1.31 range extenders allows authenticated remote attackers to corrupt m
Stack-based buffer overflow in the Edimax EW-7438RPn 1.31 wireless range extender allows remote attackers with low privi
Stack-based buffer overflow in Edimax EW-7438RPn 1.31 wireless range extenders allows remote authenticated attackers to
Same weakness CWE-77 – Command Injection
View allSame technique Command Injection
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-31574
GHSA-v76m-wvxr-74j2