CVE-2026-7685
HIGH · 8.8Working PoC public and available; KEV-unlisted but defender urgency + vendor silence = high exploitation likelihood
What: Buffer overflow in Edimax BR-6208AC router (≤v1.02) via /goform/setWAN pptpDfGateway parameter; CVSS 8.8 (HIGH), unauthenticated remote code execution risk.
Why it matters: Public exploit available same day as disclosure; vendor unresponsive to early notice; no patch released. Real attack surface on consumer/small-business routers in the wild.
Where it's seen: Feed-flooding from CVE aggregators and IoT security vendors within hours of publication. Defender advisory tone ("segment devices now") signals urgent triage concern. No mass-scanning reports yet but PoC availability raises imminent exploitation risk.
RISK: CRITICAL — Public exploit, unpatched, affects deployed infrastructure, vendor non-responsive
Public PoCs on GitHub 2 repos
- rxerium/stars ★ 0
A list of all of my starred repos, automated using Github Actions 🌟
- getquoteonline/NSNPartLookup.com-Lookup-Order-NSN-NIIN-Cage-Code-Parts ★ 0
NSNPartLookup.com – Lookup & Order NSN, NIIN, Cage Code Parts
Articles & coverage 15 articles
- CVE-2020-37187 — Buffer Overflow in Nsauditor Spotdialup | dbugs
Details on CVE-2020-37187: Buffer Overflow in Nsauditor Spotdialup. Exploited in the wild. Includes CVSS score, affected versions, and references.
- CVE-2026-27685: SAP NetWeaver Privilege Escalation Flaw
# CVE-2026-27685: SAP NetWeaver Privilege Escalation Flaw. CVE-2026-27685 is a privilege escalation vulnerability in SAP NetWeaver Enterprise Portal Administration caused by unsafe deserialization of untrusted content, severely impacting system security. SAP NetWeaver Enterprise Portal Administration is vulnerable to an insecure deserialization attack that occurs when a privileged user uploads unt
- Core Unix Web Explorer Safety Assessment Brief RLSA-2026-7685
Critical security advisory on Firefox update for Rocky Linux, addressing multiple vulnerabilities and severe threats.
- CVE-2026-27685 - Insecure Deserialization in SAP NetWeaver Enterprise Portal Administration
##### CVE-2026-27685. SAP NetWeaver Enterprise Portal Administration is vulnerable if a privileged user uploads untrusted or malicious content that, upon deserialization, could result in a high impact on the confidentiality, integrity, and availability of the host system. The following products are affected by `CVE-2026-27685` vulnerability. Even if `cvefeed.io` is aware of the exact versions of t
- NVD - CVE-2026-27685
| CVE-2026-27685 Detail **Undergoing Enrichment** --- This CVE record is currently being enriched by team members, this process results in the association of reference link tags, CVSS, CWE, and CPE applicability statement data Description SAP NetWeaver Enterprise Portal Administration is vulnerable if a privileged user uploads untrusted or malicious content that, upon deserialization, could re
› NVD details 2 CWE ·0 vendors · 4 refs expand
Description
A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpDfGateway results in buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Top posts driving the trend
- @cve.skyfleet.blueBluesky · 5/3/2026
CVE-2026-7685 - Edimax BR-6208AC setWAN buffer overflow CVE ID : CVE-2026-7685 Published : May 3, 2026, 7:16 a.m. | 1 hour, 4 minutes ago Description : A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN...
♥ 0 · ↻ 0 · 💬 0 
@infoflowcloudX · 5/3/2026🚨*CVE* CVE-2026-7685 A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpD… https://t.co/Wx9EIkMkka ----- Traducción: CVE-2026-7685 Se … https://t.co/utmtNgl3sv`
♥ 0 · ↻ 0 · 💬 0
@CVEnewX · 5/3/2026CVE-2026-7685 A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Performing a manipulation of the argument pptpD… https://t.co/qxlFKNL1JN
♥ 0 · ↻ 0 · 💬 0- @thehackerwire.bsky.socialBluesky · 5/3/2026
🟠 CVE-2026-7685 - High (8.8) A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of t... https://www.thehackerwire.com/vulnerability/CVE-2026-7685/ #infosec #cybersecurity #CVE #vulnerability #security #patchstack
♥ 0 · ↻ 0 · 💬 0 - @offseq.bsky.socialBluesky · 5/3/2026
New HIGH severity buffer overflow in Edimax BR-6208AC (≤1.02). Exploit is public, vendor unresponsive. No patch — monitor and segment devices now. https://radar.offseq.com/threat/cve-2026-7685-buffer-overflow-in-edimax-br-6208ac-c0df4819 #OffSeq #IoTSecurity #Vulnerability
♥ 0 · ↻ 0 · 💬 0
