Edimax EW-7438RPn formRadius stack-based overflow
Description
A security vulnerability has been detected in Edimax EW-7438RPn 1.31. Affected is the function formRadius of the file /goform/formRadius. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Stack-based buffer overflow in Edimax EW-7438RPn 1.31 formRadius function allows remote unauthenticated attackers to crash or potentially execute arbitrary code.
Vulnerability
A stack-based buffer overflow vulnerability exists in the formRadius function within the /goform/formRadius endpoint of Edimax EW-7438RPn firmware version 1.31 [1]. The submit-url argument is copied directly into a stack buffer without proper bounds checking, allowing an attacker to overflow the buffer and overwrite the return address [1].
Exploitation
An unauthenticated remote attacker can exploit this vulnerability by sending a crafted POST request to /goform/formRadius with an overly long submit-url parameter [1]. The provided PoC demonstrates sending a long string of 'a' characters, which causes the router to crash [1]. No authentication is required, and the attack can be performed over the network.
Impact
Successful exploitation causes a denial of service (device crash). Since the return address is overwritten, an attacker may also achieve arbitrary code execution with the privileges of the web server process, allowing full compromise of the device [1].
Mitigation
The vendor was contacted but did not respond, and no official patch or firmware update has been released [1]. As a workaround, restrict network access to the device's web interface and block untrusted traffic to the affected endpoint. Consider replacing the device if it remains unpatched.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1- Range: = 1.31
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/wudipjq/my_vuln/blob/main/Edimax/vuln_14/14.mdmitreexploit
- vuldb.com/submit/813898mitrethird-party-advisory
- vuldb.com/vuln/365442mitrevdb-entrytechnical-description
- vuldb.com/vuln/365442/ctimitresignaturepermissions-required
News mentions
0No linked articles in our index yet.