Vulnerabilities

Report: Update: CVE-2026-8777 - Edimax BR-6428NS POST Request formStaDrvSetup command injection

2026-05-18 0 views admin

CVE ID :CVE-2026-8777 Published : May 18, 2026, 2:16 a.m. | 39 minutes ago Description :A vulnerability was found in Edimax BR-6428NS 1.10. This issue affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. Performing a manipulation of the argument stadrv_ssid results in command injection. The attack can be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way. Severity: 6.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-8777

Severity

MEDIUM

Published

May 18, 2026

Impact: command injection

🏷️ Tags

reportupdateedimax6428nsrequestformstadrvsetupcommandinjectioncvecve-2026-8777

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Update: CVE-2026-8777 - Edimax BR-6428NS POST Request formStaDrvSetup command injection

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-29518 - Rsync < 3.4.3 TOCTOU Race Condition Allows Symlink-Based Arbitrary File Write

Report: CVE-2026-3593 - Heap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation - Full Analysis

Report: Ultimate Guide: CVE-2026-3592 - Amplification vulnerabilities via self-pointed glue records

Report: Ultimate Guide: CVE-2026-3039 - BIND 9 server memory exhaustion during GSS-API TKEY negotiation

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting