High severity8.8NVD Advisory· Published May 31, 2026· Updated Jun 1, 2026
CVE-2026-10163
CVE-2026-10163
Description
A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of the argument UserName/Password leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.
Affected products
1Patches
Vulnerability mechanics
References
4News mentions
1- Edimax BR-6478AC: Seven Remote-Code-Execution Flaws Disclosed in 12-Hour BatchVypr Intelligence · May 31, 2026