Which versions of Edimax EW-7438RPn are affected by CVE-2026-9427?

Edimax EW-7438RPn 1.31 wireless range extenders contain a stack-based buffer overflow vulnerability (CVE-2026-9427, CVSS 7.4) exploitable by authenticated attackers through the device web interface,…

Is there a public PoC exploit available for CVE-2026-9427?

Yes, a public proof-of-concept exploit is available for CVE-2026-9427. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-9427?

Within 24 hours: Conduct inventory of all Edimax EW-7438RPn 1.31 devices and audit which network segments or users have administrative access to their web interface. Within 7 days: Restrict administrative access to affected devices to trusted IP ranges and staff roles only; begin vendor evaluation for replacement models; submit formal support request to Edimax for patch status. Within 30 days: Replace all Edimax EW-7438RPn 1.31 units with alternative wireless range extender solutions from actively supported vendors, or if retention is operationally mandated, migrate affected devices to an isolated management network with strict firewall rules limiting inbound access to authorized administrators only.

Edimax EW-7438RPn CVE-2026-9427

Q: What is the CVSS score of CVE-2026-9427?

CVE-2026-9427 has a CVSS 4.0 base score of 7.4 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-31631 HIGH

Stack-based Buffer Overflow (CWE-121)

2026-05-25 VulDB

GHSA-wv7w-gprg-vf9f

Stack Overflow Buffer Overflow Ew 7438Rpn

7.4

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

7.4 HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

Jun 08, 2026 - 09:28 vuln.today

CVSS changed

May 26, 2026 - 19:37 NVD

8.8 (HIGH) 7.4 (HIGH)

DescriptionCVE.org

A flaw has been found in Edimax EW-7438RPn 1.31. This impacts the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component webs. This manipulation of the argument selSSID/submit-url causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Stack-based buffer overflow in Edimax EW-7438RPn 1.31 wireless range extenders allows remote authenticated attackers to corrupt memory by manipulating the selSSID or submit-url parameters in the formWlSiteSurvey handler (/goform/formWlSiteSurvey) of the embedded web server. Publicly available exploit code exists and the vendor did not respond to disclosure attempts, leaving the device without a confirmed patch. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Identify reachable EW-7438RPn web UI

Delivery

Authenticate with low-privilege credentials

Exploit

Send crafted POST to /goform/formWlSiteSurvey with oversized selSSID

Execution

Overflow stack buffer and overwrite return address

Persist

Execute shellcode as webs process (likely root)

Impact

Install backdoor or pivot into LAN