CVE-2026-7683 | Edimax BR-6428nC up to 1.16 Web Interface /goform/setWAN pppUserName/pptpUserName command injection

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability was found in Edimax BR-6428nC up to 1.16. It has been classified as critical. This affects an unknown function of the file /goform/setWAN of the component Web Interface. This manipulation of the argument pppUserName/pptpUserName causes command injection.

This vulnerability is handled as CVE-2026-7683. The attack can be initiated remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-7683 | Edimax BR-6428nC up to 1.16 Web Interface /goform/setWAN pppUserName/pptpUserName command injection

Post correlati

CVE-2026-21722 | Grafana/Grafana Enterprise up to 11.6.10/12.1.6/12.2.4/12.3.2 Public Dashboard information disclosure

CVE-2024-43703 | Imagination Technologies Graphics DDK up to 24.2 RTM2 GPU System Call use after free

CVE-2025-26306 | libming 0.4.8 File util/read.c readSizedString memory leak (Issue 324)

CVE-2025-25894 | D-Link DSL-3782 1.01 Packet samba_wg/samba_nbn os command injection