Description
A security flaw has been discovered in Edimax BR-6675nD 1.12. Impacted is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulation of the argument command results in command injection. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-25
Score: 5.1 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

This vulnerability allows injection of arbitrary commands through the 'command' parameter of the POST endpoint /goform/mp on Edimax BR‑6675nD routers running firmware 1.12. By crafting a malicious request, an attacker can cause the device to execute arbitrary shell commands, potentially leading to full device compromise. The flaw is a classic command injection issue, falling under CWE‑74 and CWE‑77.

Affected Systems

Edimax BR‑6675nD routers, firmware version 1.12. The vulnerability exists in the component that handles POST requests to /goform/mp. No other versions are identified.

Risk and Exploitability

The CVSS score of 5.1 indicates a moderate severity. EPSS information is not available, but the vulnerability is publicly known and exploit code has been released, implying that attackers can likely trigger the flaw remotely. The attack vector is remote via HTTP POST, and the vulnerability can be leveraged from any network that can reach the router, making it potentially accessible from the internet. Since the vulnerability is not listed in the CISA KEV catalog, organization-specific monitoring should still be implemented.

Generated by OpenCVE AI on May 25, 2026 at 06:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the router firmware to the latest release that eliminates the command injection flaw; if no update is available, consider replacing the device.
  • Disable remote management features or block external access to the router's management interface using firewall rules to prevent exposure of /goform/mp to untrusted networks.
  • Restrict network traffic to the router's management port, allowing only trusted internal hosts to send POST requests to /goform/mp.

Generated by OpenCVE AI on May 25, 2026 at 06:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 25 May 2026 05:15:00 +0000

Type Values Removed Values Added
Description A security flaw has been discovered in Edimax BR-6675nD 1.12. Impacted is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulation of the argument command results in command injection. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
Title Edimax BR-6675nD POST Request mp command injection
First Time appeared Edimax
Edimax br-6675nd
Weaknesses CWE-74
CWE-77
CPEs cpe:2.3:a:edimax:br-6675nd:*:*:*:*:*:*:*:*
Vendors & Products Edimax
Edimax br-6675nd
References
Metrics cvssV2_0

{'score': 5.8, 'vector': 'AV:N/AC:L/Au:M/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 4.7, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 4.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Edimax Br-6675nd
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-25T03:45:09.410Z

Reserved: 2026-05-24T06:59:09.343Z

Link: CVE-2026-9423

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-25T06:30:18Z

Weaknesses