CVE-2026-13562 | Edimax EW-7478APC 1.04 POST Request formiNICSiteSurvey selSSID buffer overflow

A vulnerability classified as critical has been found in Edimax EW-7478APC 1.04. This affects the function formiNICSiteSurvey of the file /goform/formiNICSiteSurvey of the component POST Request Handler. This manipulation of the argument selSSID causes buffer overflow.

The identification of this vulnerability is CVE-2026-13562. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-13562 | Edimax EW-7478APC 1.04 POST Request formiNICSiteSurvey selSSID buffer overflow

Post correlati

CVE-2023-35685 | Google Android devicemem_server.c DevmemtMapPages use after free (Issue 424200)

CVE-2024-32963 | Navidrome up to 0.51.x HTTP Traffic Privilege Escalation

CVE-2023-49922 | Elastic Beats up to 7.17.15/8.11.2 HTTP Status Code log file

CVE-2024-1694 | Google Omaha prior 1.3.36.351 Update Service access control (Issue 409463)