CVE-2026-7684
Published: 03 May 2026
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2026-7684 is a buffer overflow vulnerability (CWE-119, CWE-120) in the Edimax BR-6428nC router, affecting versions up to 1.16. The flaw impacts an unknown function in the /goform/setWAN file, triggered by manipulation of the pptpDfGateway argument.
Attackers with low privileges can exploit this remotely over the network with low complexity and no user interaction required, as indicated by the CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). Successful exploitation enables high-impact compromise of confidentiality, integrity, and availability, likely resulting in remote code execution.
Advisories from VulDB and a public disclosure on a Notion site note that the vendor was contacted early but provided no response or patch. The exploit code has been publicly released, increasing the risk of active exploitation.
Details
- CWE(s)
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Buffer overflow in the exposed /goform/setWAN web interface of the router directly enables remote exploitation of a public-facing application for initial access and RCE.