CVE-2026-8774 | Edimax BR-6228NC 1.22 POST Request /goform/mp command command injection

A vulnerability was found in Edimax BR-6228NC 1.22. It has been declared as critical. Affected by this issue is the function mp of the file /goform/mp of the component POST Request Handler. The manipulation of the argument command results in command injection.

This vulnerability was named CVE-2026-8774. The attack may be performed from remote. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More