Description
A vulnerability was detected in Edimax BR-6675nD 1.12. This vulnerability affects the function formsetPPPoE of the file /goform/formsetPPPoE of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in buffer overflow. It is possible to initiate the attack remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-24
Score: 8.7 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An over‑read/over‑write flaw exists in the POST request handler of the Edimax BR‑6675nD firmware version 1.12, specifically the formsetPPPoE function that processes the pppUserName parameter. The vulnerability is classified as a buffer overflow (CWE‑119, CWE‑120) and can be triggered by sending a crafted POST request to the /goform/formsetPPPoE endpoint. The flaw allows an attacker to corrupt memory, potentially execute arbitrary code or crash the device, compromising confidentiality, integrity, and availability. The exploit is publicly available and the vendor has not released a fix.}

Affected Systems

The affected system is the Edimax BR‑6675nD router running firmware version 1.12. The primary attack surface is the exposed web management interface that processes PPPoE configuration via POST requests. Any device running this firmware revision and exposed to an untrusted network may be susceptible; newer or unconfirmed firmware revisions are not identified as affected.

Risk and Exploitability

The CVSS score of 8.7 indicates a high severity. Although the EPSS score is not available, the publicly available exploit indicates a realistic threat. The vulnerability is not listed in CISA’s KEV catalog, but the lack of vendor responsiveness does not mitigate the risk. The likely attack vector is remote network traffic: an attacker can send a crafted HTTP POST to the router’s web interface without authentication, triggering the overflow. The exploit does not require privileged access beyond network reachability.

Generated by OpenCVE AI on May 24, 2026 at 22:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply an official firmware update that resolves the formsetPPPoE buffer overflow
  • If no update is immediately available, restrict the router’s web management interface to trusted internal IP ranges or use firewall rules to block HTTP traffic to /goform/formsetPPPoE from external networks
  • As a temporary workaround, disable or remove access to the PPPoE configuration page (e.g., by configuring the device to serve no content or to reject POST requests) until a patch is applied

Generated by OpenCVE AI on May 24, 2026 at 22:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 24 May 2026 21:30:00 +0000

Type Values Removed Values Added
Description A vulnerability was detected in Edimax BR-6675nD 1.12. This vulnerability affects the function formsetPPPoE of the file /goform/formsetPPPoE of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in buffer overflow. It is possible to initiate the attack remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title Edimax BR-6675nD POST Request formsetPPPoE buffer overflow
First Time appeared Edimax
Edimax br-6675nd
Weaknesses CWE-119
CWE-120
CPEs cpe:2.3:a:edimax:br-6675nd:*:*:*:*:*:*:*:*
Vendors & Products Edimax
Edimax br-6675nd
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Edimax Br-6675nd
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-24T21:00:13.650Z

Reserved: 2026-05-24T06:24:09.601Z

Link: CVE-2026-9399

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-24T22:30:09Z

Weaknesses