Description
A vulnerability was detected in Edimax BR-6675nD 1.12. Affected by this vulnerability is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-24
Score: 8.7 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The CVE identifies a classic buffer overflow within the formPPPoESetup function of the Edimax BR‑6675nD router firmware 1.12. By sending an overly long value for the pppUserName field in a POST request to /goform/formPPPoESetup, an attacker can overflow the stack and potentially execute arbitrary code. The flaw relies on insufficient bounds checking (CWE‑119 and CWE‑120) and is reachable from outside the local network, making it a remote code execution risk.

Affected Systems

This flaw affects the Edimax BR‑6675nD wireless router, specifically firmware version 1.12. The issue resides in the POST request handler exposed through the web management interface, which most users access via the device's IP address. No other firmware versions or related products are listed as affected.

Risk and Exploitability

The CVSS base score of 8.7 indicates a high severity. Although the EPSS score is unavailable, the exploit is publicly available and can be triggered from any reachable router, making the likelihood of exploitation significant. The vulnerability is not currently listed in the CISA KEV catalog, but corporate networks that own affected routers should treat potentially exposed devices as high risk and focus on immediate remediation.

Generated by OpenCVE AI on May 24, 2026 at 13:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Edimax BR‑6675nD firmware to a version that contains a patch for the formPPPoESetup buffer overflow. If a vendor release is not yet available, contact the vendor for an advisory or wait for an update.
  • Restrict external access to the router’s web management interface by applying firewall rules, blocking unsolicited inbound traffic, or placing the device behind a secure NAT gateway so that only trusted internal hosts can reach the /goform/formPPPoESetup endpoint.
  • Disable PPPoE configuration functionality or remove the /goform/formPPPoESetup endpoint entirely if the router’s settings allow it, thereby eliminating the vulnerable path.

Generated by OpenCVE AI on May 24, 2026 at 13:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 24 May 2026 12:45:00 +0000

Type Values Removed Values Added
Description A vulnerability was detected in Edimax BR-6675nD 1.12. Affected by this vulnerability is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title Edimax BR-6675nD POST Request formPPPoESetup buffer overflow
First Time appeared Edimax
Edimax br-6675nd
Weaknesses CWE-119
CWE-120
CPEs cpe:2.3:a:edimax:br-6675nd:*:*:*:*:*:*:*:*
Vendors & Products Edimax
Edimax br-6675nd
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Edimax Br-6675nd
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-24T12:30:10.768Z

Reserved: 2026-05-23T14:59:11.274Z

Link: CVE-2026-9381

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-24T13:30:15Z

Weaknesses