CVE-2025-70161
- EPSS 0.48%
- Veröffentlicht 09.01.2026 00:00:00
- Zuletzt bearbeitet 22.01.2026 20:45:13
EDIMAX BR-6208AC V2_1.02 is vulnerable to Command Injection. This arises because the pppUserName field is directly passed to a shell command via the system() function without proper sanitization. An attacker can exploit this by injecting malicious co...
CVE-2025-15258
- EPSS 0.03%
- Veröffentlicht 30.12.2025 17:32:05
- Zuletzt bearbeitet 09.01.2026 19:54:46
A weakness has been identified in Edimax BR-6208AC 1.02/1.03. Affected by this issue is the function formALGSetup of the file /goform/formALGSetup of the component Web-based Configuration Interface. This manipulation of the argument wlan-url causes o...
CVE-2025-15257
- EPSS 0.33%
- Veröffentlicht 30.12.2025 17:15:42
- Zuletzt bearbeitet 20.01.2026 19:26:11
A security flaw has been discovered in Edimax BR-6208AC 1.02/1.03. Affected by this vulnerability is the function formRoute of the file /gogorm/formRoute of the component Web-based Configuration Interface. The manipulation of the argument strIp/strMa...
CVE-2025-15256
- EPSS 0.44%
- Veröffentlicht 30.12.2025 16:32:06
- Zuletzt bearbeitet 13.01.2026 21:35:45
A vulnerability was identified in Edimax BR-6208AC 1.02/1.03. Affected is the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component Web-based Configuration Interface. The manipulation of the argument rootAPmac leads to command...
CVE-2025-14910
- EPSS 0.09%
- Veröffentlicht 19.12.2025 02:16:04
- Zuletzt bearbeitet 12.01.2026 17:01:11
A vulnerability was detected in Edimax BR-6208AC 1.02. This impacts the function handle_retr of the component FTP Daemon Service. The manipulation results in path traversal. The attack may be launched remotely. The exploit is now public and may be us...