Description
A vulnerability was detected in Edimax EW-7438RPn 1.31. The impacted element is the function formrefresh of the file /goform/formrefresh. The manipulation of the argument submit-url results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-25
Score: 8.7 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A stack‑based buffer overflow exists in the formrefresh function of the /goform/formrefresh handler on the Edimax EW‑7438RPn. Manipulating the submit‑url parameter triggers a memory overflow that can lead to the execution of arbitrary code, as stated in the CVE description. The vulnerability corresponds to CWE‑119 and CWE‑121 weaknesses in input validation and stack protection.

Affected Systems

The flaw is specifically identified in the Edimax EW‑7438RPn router running firmware version 1.31. The CNA records only this build, and earlier or later firmware versions have not been explicitly ruled out by the vendor, so they may also remain vulnerable until a patch is provided.

Risk and Exploitability

The CVSS score of 8.7 indicates high severity. No EPSS score is available, and the issue is not listed in the CISA KEV catalog, yet a public exploit exists. Because the attack vector is remote and does not require local access, the risk to organizations that expose the router to public or untrusted networks is significant and the potential consequence is full system compromise.

Generated by OpenCVE AI on May 25, 2026 at 20:25 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the router firmware to the latest version that resolves the formrefresh stack overflow, checking the vendor’s support site for an official patch.
  • Restrict HTTP access to the /goform/formrefresh endpoint using firewall or ACL rules so that only trusted internal networks or specific IP addresses can reach it.
  • If remote web‑management is not mandatory, disable the feature entirely or limit it to a tightly controlled subnet to eliminate the vulnerable surface area.

Generated by OpenCVE AI on May 25, 2026 at 20:25 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 25 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description A vulnerability was detected in Edimax EW-7438RPn 1.31. The impacted element is the function formrefresh of the file /goform/formrefresh. The manipulation of the argument submit-url results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title Edimax EW-7438RPn formrefresh stack-based overflow
First Time appeared Edimax
Edimax ew-7438rpn
Weaknesses CWE-119
CWE-121
CPEs cpe:2.3:a:edimax:ew-7438rpn:*:*:*:*:*:*:*:*
Vendors & Products Edimax
Edimax ew-7438rpn
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Edimax Ew-7438rpn
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-25T18:00:12.747Z

Reserved: 2026-05-24T09:18:34.254Z

Link: CVE-2026-9480

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-25T20:30:26Z

Weaknesses