CVE-2026-9360 | Edimax EW-7438RPn 1.28a POST Request /goform/formwlencrypt24g key1 buffer overflow

Inserito da Angelo Barbosa | Mag 23, 2026 | CVE

A vulnerability was found in Edimax EW-7438RPn 1.28a. It has been declared as critical. Affected by this issue is the function formwlencrypt24g of the file /goform/formwlencrypt24g of the component POST Request Handler. The manipulation of the argument key1 results in buffer overflow.

This vulnerability is reported as CVE-2026-9360. The attack can be launched remotely. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-9360 | Edimax EW-7438RPn 1.28a POST Request /goform/formwlencrypt24g key1 buffer overflow

Post correlati

CVE-2024-13261 | Drupal Acquia DAM up to 1.0.12/1.1.0-beta2 cross-site request forgery

CVE-2026-37538 | socketcand 0.4.2 socketcand.c main bus_name buffer overflow

CVE-2025-15380 | NotificationX Plugin up to 3.2.0 on WordPress nx-preview cross site scripting

CVE-2025-26202 | DZS Router Web Interface Passphrase cross site scripting