CRITICAL🇵🇱 Wersja polska

CVE-2025-70161

CVSS 9.8v3.1pub. 2026-01-09upd. 2026-01-22

EDIMAX BR-6208AC V2_1.02 is vulnerable to Command Injection. This arises because the pppUserName field is directly passed to a shell command via the system() function without proper sanitization. An attacker can exploit this by injecting malicious commands into the pppUserName field, allowing arbitrary code execution.

🤖 AI Analysis
How it works

The pppUserName field, passed through the web interface (setWAN handler), is directly inserted into a system() function call without any validation or sanitization of input data. An attacker can place malicious shell commands in this field (e.g., using special characters such as ';', '|', '`'), which will be executed with the privileges of the process handling the request. The attack does not require authentication or user interaction.

Impact

An attacker gains the ability to execute arbitrary code on the device, which may lead to complete takeover of the router, violation of data confidentiality and integrity, and disruption of its availability.

Mitigation & patch

Apply patches available from the manufacturer according to the references. Until an update is released, it is recommended to restrict access to the device's web interface only to trusted local networks and block access from the Internet using a firewall.

Who is affected

Edimax BR-6208AC in firmware version V2_1.02

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Edimax Br 6208ac

    HW
    Edimax
    2.0
  • Edimax Br 6208ac Firmware

    OS
    Edimax
    1.03
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2026-1972MEDIUM5.5ten sam produkt

A vulnerability was found in Edimax BR-6208AC 2_1.02. The affected element is the function auth_check_userpass...

CVE-2025-15256MEDIUM5.5ten sam produkt

A vulnerability was identified in Edimax BR-6208AC 1.02/1.03. Affected is the function formStaDrvSetup of the ...

CVE-2025-15257MEDIUM5.5ten sam produkt

A security flaw has been discovered in Edimax BR-6208AC 1.02/1.03. Affected by this vulnerability is the funct...

CVE-2025-15258LOW2.0ten sam produkt

W urządzeniach Edimax BR-6208AC w wersjach 1.02/1.03 zidentyfikowano podatność. Problem dotyczy funkcji formAL...

CVE-2025-14910LOW2.1ten sam produkt

Wykryta została podatność w Edimax BR-6208AC 1.02 wpływająca na funkcję handle_retr usługi FTP Daemon Service,...