CVE-2025-70161

CRITICAL

EDIMAX BR-6208AC V2_1.02 - OS Command Injection via pppUserName Field

Title source: llm

Description

EDIMAX BR-6208AC V2_1.02 is vulnerable to Command Injection. This arises because the pppUserName field is directly passed to a shell command via the system() function without proper sanitization. An attacker can exploit this by injecting malicious commands into the pppUserName field, allowing arbitrary code execution.

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://tzh00203.notion.site/EDIMAX-BR-6208AC-V2_1-02-Command-Injection-Vulnerability-in-Web-setWAN-handler-2d3b5c52018a80d7ae8dce2bf5e3294c?source=copy_link

Scores

CVSS v3 9.8

EPSS 0.2410

EPSS Percentile 97.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-77

Status published

Products (1)

edimax/br-6208ac_firmware 1.03

Published Jan 09, 2026

Tracked Since Feb 18, 2026