CVE-2026-9344 | Edimax EW-7438RPn up to 1.31 webs /goform/formWpsStart pinCode/wlan-url stack-based overflow

Inserito da Angelo Barbosa | Mag 23, 2026 | CVE

A vulnerability was found in Edimax EW-7438RPn up to 1.31 and classified as critical. The impacted element is an unknown function of the file /goform/formWpsStart of the component webs. Such manipulation of the argument pinCode/wlan-url leads to stack-based buffer overflow.

This vulnerability is documented as CVE-2026-9344. The attack can be executed remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-9344 | Edimax EW-7438RPn up to 1.31 webs /goform/formWpsStart pinCode/wlan-url stack-based overflow

Post correlati

CVE-2025-39355 | FAT Services Booking Plugin up to 5.6 on WordPress sql injection

CVE-2015-6497 | Magento Community Edition/Enterprise Edition on PHP5 V2.php create productData input validation (KIS-2015-04)

CVE-2023-47620 | koush scrypted up to 0.55.0 plugin-http.ts owner/pkg cross site scripting (GHSL-2023-218)

CVE-2024-40474 | SourceCodester House Rental Management System 1.0 edit-cate.php cross site scripting