EDIMAX BR-6208AC V2_1.02 is vulnerable to Command Injection. This arises because the pppUserName field is directly passed to a shell command via the system() function without proper sanitization. An attacker can exploit this by injecting malicious commands into the pppUserName field, allowing arbitrary code execution.
The pppUserName field, passed through the web interface (setWAN handler), is directly inserted into a system() function call without any validation or sanitization of input data. An attacker can place malicious shell commands in this field (e.g., using special characters such as ';', '|', '`'), which will be executed with the privileges of the process handling the request. The attack does not require authentication or user interaction.
An attacker gains the ability to execute arbitrary code on the device, which may lead to complete takeover of the router, violation of data confidentiality and integrity, and disruption of its availability.
Apply patches available from the manufacturer according to the references. Until an update is released, it is recommended to restrict access to the device's web interface only to trusted local networks and block access from the Internet using a firewall.
Edimax BR-6208AC in firmware version V2_1.02
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HEdimax Br 6208ac
HWEdimax2.0Edimax Br 6208ac Firmware
OSEdimax1.03
Related vulnerabilities
A vulnerability was found in Edimax BR-6208AC 2_1.02. The affected element is the function auth_check_userpass...
A vulnerability was identified in Edimax BR-6208AC 1.02/1.03. Affected is the function formStaDrvSetup of the ...
A security flaw has been discovered in Edimax BR-6208AC 1.02/1.03. Affected by this vulnerability is the funct...
W urządzeniach Edimax BR-6208AC w wersjach 1.02/1.03 zidentyfikowano podatność. Problem dotyczy funkcji formAL...
Wykryta została podatność w Edimax BR-6208AC 1.02 wpływająca na funkcję handle_retr usługi FTP Daemon Service,...