Skip to content
CVSS 8.8 · HIGH

CVE-2026-7684

A security vulnerability has been detected in Edimax BR-6428nC up to 1.16. This impacts an unknown function of the file /goform/setWAN. Such manipulation of the argument pptpDfGateway  leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

View on NVD

Analysis

The vulnerability affects the firmware of the Edimax BR-6428nC consumer router via a buffer overflow in the WAN settings. It does not impact web development stacks, cloud infrastructure, or common developer tooling, and is considered out of scope for the community.

Severity

Score: 8.8(HIGH)
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AV: NETWORK
AC: LOW
PR: LOW
UI: NONE
S: UNCHANGED
C: HIGH
I: HIGH
A: HIGH
Weakness (CWE): CWE-119CWE-120

EPSS

Probability of exploitation (next 30 days): 0.0004 (0.0%)
Percentile: 12.3%
EPSS: 2026-05-06

Technical description

A security vulnerability has been detected in Edimax BR-6428nC up to 1.16. This impacts an unknown function of the file /goform/setWAN. Such manipulation of the argument pptpDfGateway  leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published: 5/3/2026, 7:16:25 AM
Last modified: 5/5/2026, 7:30:15 PM

References

HomeEventsBlogResourcesTeam