Which versions of Edimax EW-7438RPn are affected by CVE-2026-9481?

The Edimax EW-7438RPn Wi-Fi range extender (firmware 1.31) is vulnerable to a remotely exploitable stack-based buffer overflow reachable by authenticated users.

Is there a public PoC exploit available for CVE-2026-9481?

Yes, a public proof-of-concept exploit is available for CVE-2026-9481. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-9481?

Within 24 hours: inventory all deployed Edimax EW-7438RPn devices and verify firmware version 1.31 presence. Within 7 days: restrict network access to device management interfaces and disable the formStats endpoint where operationally feasible. Within 30 days: contact Edimax support for patch timeline, evaluate replacement devices with active vendor support, and implement endpoint monitoring for exploitation attempts.

Edimax EW-7438RPn CVE-2026-9481

Q: What is the CVSS score of CVE-2026-9481?

CVE-2026-9481 has a CVSS 4.0 base score of 7.4 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-31716 HIGH

Stack-based Buffer Overflow (CWE-121)

2026-05-25 VulDB

GHSA-2444-737h-93cr

Stack Overflow Buffer Overflow Ew 7438Rpn

7.4

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

7.4 HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

Jun 08, 2026 - 09:54 vuln.today

CVSS changed

May 26, 2026 - 19:37 NVD

8.8 (HIGH) 7.4 (HIGH)

DescriptionCVE.org

A flaw has been found in Edimax EW-7438RPn 1.31. This affects the function formStats of the file /goform/formStats. This manipulation of the argument submit-url causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Stack-based buffer overflow in the Edimax EW-7438RPn Wi-Fi range extender (firmware 1.31) allows remote authenticated attackers to corrupt memory by submitting an oversized 'submit-url' argument to the formStats handler at /goform/formStats. Publicly available exploit code exists (VulDB-published PoC on GitHub), though EPSS estimates exploitation probability at only 0.04%. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon

Reach device admin web UI on LAN

Delivery

Authenticate with valid or default credentials

Exploit

POST oversized submit-url to /goform/formStats

Install

Overflow stack buffer in formStats handler

Hijack saved return address with ROP/shellcode

Execute

Execute code as root on extender

Impact

Pivot into internal Wi-Fi network