Description
A flaw has been found in Edimax EW-7438RPn 1.31. This affects the function formStats of the file /goform/formStats. This manipulation of the argument submit-url causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-05-25
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A stack‑based buffer overflow exists in the formStats function of Edimax EW‑7438RPn firmware 1.31, triggered by a manipulated submit‑url argument. The flaw allows a remote attacker to supply crafted data that overflows the stack and can lead to arbitrary code execution on the device. The weakness maps to CWE‑119 and CWE‑121 and is rated CVSS 8.7.

Affected Systems

The vulnerability is present in the Edimax EW‑7438RPn router running firmware 1.31. No other versions or products are listed as affected; users should verify their device model and firmware release.

Risk and Exploitability

The exploit is remote and an exploit package has already been reported on public sites. The EPSS score is not available, but the high CVSS clearly indicates a serious risk. The vulnerability is not yet listed in the CISA KEV catalog, yet the lack of a vendor response and the public availability of an exploit suggest that an attacker could mount a timely attack, especially against devices exposed to the internet.

Generated by OpenCVE AI on May 25, 2026 at 19:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the device firmware to the latest available version that fixes the formStats overflow (at least 1.32 if released).
  • If a newer firmware is not available, use network perimeter controls to block or redirect traffic to /goform/formStats from untrusted sources, limiting remote management access to the router's web interface.
  • Monitor inbound requests for pattern signatures associated with the formStats exploit, such as unusually large submit‑url parameters, and alert on such activity.

Generated by OpenCVE AI on May 25, 2026 at 19:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 26 May 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 25 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description A flaw has been found in Edimax EW-7438RPn 1.31. This affects the function formStats of the file /goform/formStats. This manipulation of the argument submit-url causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title Edimax EW-7438RPn formStats stack-based overflow
First Time appeared Edimax
Edimax ew-7438rpn
Weaknesses CWE-119
CWE-121
CPEs cpe:2.3:a:edimax:ew-7438rpn:*:*:*:*:*:*:*:*
Vendors & Products Edimax
Edimax ew-7438rpn
References
Metrics cvssV2_0

{'score': 9, 'vector': 'AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 8.8, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Edimax Ew-7438rpn
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-26T15:06:48.159Z

Reserved: 2026-05-24T09:18:36.912Z

Link: CVE-2026-9481

cve-icon Vulnrichment

Updated: 2026-05-26T15:06:43.944Z

cve-icon NVD

Status : Received

Published: 2026-05-25T19:16:37.027

Modified: 2026-05-25T19:16:37.027

Link: CVE-2026-9481

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-25T19:30:16Z

Weaknesses