Edimax Br 6478ac V2
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Edimax Br 6478ac V2.
By the Year
In 2026 there have been 5 vulnerabilities in Edimax Br 6478ac V2 with an average score of 6.8 out of ten.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 5 | 6.80 |
It may take a day or so for new Br 6478ac V2 vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Edimax Br 6478ac V2 Security Vulnerabilities
Edimax BR6478AC V2 1.23 CMD Injection via /goform/mp
CVE-2026-12810
6.3 - Medium
- June 21, 2026
A security flaw has been discovered in Edimax BR-6478AC V2 1.23. Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler. Performing a manipulation of the argument command results in command injection. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
Command Injection
Edimax BR-6478AC V2 1.23 Command Injection via wiz_5in1_redirect
CVE-2026-12809
6.3 - Medium
- June 21, 2026
A vulnerability was identified in Edimax BR-6478AC V2 1.23. Affected is the function wiz_5in1_redirect of the file /goform/wiz_5in1_redirect of the component POST Request Handler. Such manipulation of the argument newpass leads to command injection. The attack can be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Command Injection
Edimax BR-6478AC V2 1.23 Command Injection via /goform/stainfo
CVE-2026-12808
6.3 - Medium
- June 21, 2026
A vulnerability was determined in Edimax BR-6478AC V2 1.23. This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler. This manipulation of the argument interface causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
Command Injection
Command Injection in Edimax BR-6478AC V2 1.23 setWAN POST Handler
CVE-2026-12807
6.3 - Medium
- June 21, 2026
A vulnerability was found in Edimax BR-6478AC V2 1.23. This affects the function setWAN of the file /goform/setWAN of the component POST Request Handler. The manipulation of the argument pppUserName/pptpUserName/L2TPUserName results in command injection. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Command Injection
Edimax BR-6478AC V2 1.23 buffer overflow in formWlSiteSurvey via selSSID
CVE-2026-12806
8.8 - High
- June 21, 2026
A vulnerability has been found in Edimax BR-6478AC V2 1.23. The impacted element is the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component POST Request Handler. The manipulation of the argument selSSID leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Classic Buffer Overflow
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Edimax Br 6478ac V2 or by Edimax? Click the Watch button to subscribe.
