CVE-2026-7682 | Edimax BR-6208AC 1.02 L2TP Mode /goform/setWAN L2TPUserName command injection

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability was found in Edimax BR-6208AC 1.02 and classified as critical. The impacted element is the function setWAN of the file /goform/setWAN of the component L2TP Mode. The manipulation of the argument L2TPUserName results in command injection.

This vulnerability is known as CVE-2026-7682. It is possible to launch the attack remotely. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-7682 | Edimax BR-6208AC 1.02 L2TP Mode /goform/setWAN L2TPUserName command injection

Post correlati

CVE-2024-23344 | Enalean Tuleap Community Edition prior 15.4.99.140 information disclosure (GHSA-m3v5-2j5q-x85w)

CVE-2024-6427 | MESbook 20221021.03 message cross site scripting

CVE-2024-53226 | Linux Kernel up to 6.12.1 RDMA hns_roce_map_mr_sg sg_offset null pointer dereference

CVE-2024-44644 | PHPGurukul Small CRM 3.0 manage-tickets.php frm_id/aremark sql injection