CVE-2026-10127NVD

Description

A weakness has been identified in Edimax BR-6478AC 1.23. This affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. This manipulation of the argument rootAPmac causes command injection. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks.

Severity Level

MEDIUM (6.3)

Published Date

30/05/2026

Last Modified

02/06/2026

Exploitation Status

????

References

https://vuldb.com/vuln/367304
https://vuldb.com/vuln/367304/cti
https://vuldb.com/submit/818455
https://lavender-bicycle-a5a.notion.site/EDIMAX-BR6478ACV2-formStaDrvSetup-34b53a41781f80ce9e66dbf60c71b960?source=copy_link

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

CVE-2026-10127NVD

Description

References