CVE-2026-13580 | Edimax EW-7478APC 1.04 POST Request /goform/formQoS selSSID buffer overflow

Inserito da Angelo Barbosa | Giu 28, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Edimax EW-7478APC 1.04. This affects the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the argument selSSID leads to buffer overflow.

This vulnerability is referenced as CVE-2026-13580. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-13580 | Edimax EW-7478APC 1.04 POST Request /goform/formQoS selSSID buffer overflow

Post correlati

CVE-2023-51334 | PHPJabbers Cinema Booking System 1.0 Forgot Password denial of service

CVE-2026-6139 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi UploadOpenVpnCert FileName os command injection

CVE-2024-39434 | Unisoc T606/T612/T616/T610/T618/T760/T770/T820/S8000 Drm Service out-of-bounds

CVE-2024-36389 | MileSight DeviceHub random values