CVE-2025-15258 | Edimax BR-6208AC 1.02/1.03 Web-based Configuration Interface /goform/formALGSetup wlan-url redirect

A vulnerability, which was classified as problematic, has been found in Edimax BR-6208AC 1.02/1.03. Affected by this issue is the function formALGSetup of the file /goform/formALGSetup of the component Web-based Configuration Interface. This manipulation of the argument wlan-url causes open redirect. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is tracked as CVE-2025-15258. The attack is possible to be carried out remotely. Moreover, an exploit is present.

Edimax confirms this issue: “The product mentioned, EDIMAX BR-6208AC V2, has reached its End of Life (EOL) status. It is no longer supported or maintained by Edimax, and it is no longer available for purchase in the market. Consequently, there will be no further firmware updates or patches for this device. We recommend users upgrade to newer models for better security.”

CVE-2025-15258 | Edimax BR-6208AC 1.02/1.03 Web-based Configuration Interface /goform/formALGSetup wlan-url redirect

Post correlati

CVE-2024-51980 | Printer Web Service server-side request forgery

CVE-2025-6698 | LabRedesCefetRJ WeGIA 3.4.0 Adicionar tipo adicionar_tipoSaida.php Insira o novo tipo cross site scripting

CVE-2025-58280 | Huawei HarmonyOS 5.0.1/5.1.0 Ark eTS prototype pollution

CVE-2024-1623 | Sagemcom FAST3686 V2 Vodafone prior FAST3686_ONO-SIP_3.709.2 Login.asp session expiration