CNNVD-202512-5104 Information

Dec 30, 2025 cve

CNNVD ID

CNNVD-202512-5104

CVE-2025-15257

CNNVD Published: 2025-12-30

Description (Chinese)

EDIMAX BR-6208AC是中国台湾讯舟（EDIMAX）公司的一款无线宽带路由器。 Edimax BR-6208AC 1.02版本和1.03版本存在命令注入漏洞，该漏洞源于对组件Web-based Configuration Interface中文件/gogorm/formRoute参数strIp/strMask/strGateway的错误操作，可能导致命令注入。

Description (English)

EDIMAX BR-6208AC is a wireless broadband router of the Chinese company EDIMAX. Edimax BR-6208AC Version 1.02 and Version 1.03 have a command-injecting loophole, which stems from the error in the file/gogorm/formRoute parameter stIp/strMask/strGateway of the component Web-based Construction Interface, which may lead to the command-injection.

Hazard Level

Medium

Vulnerability Type

命令注入

Affected Vendor

讯舟

Published

2025-12-30

Last Modified

2026-02-24

References

https://tzh00203.notion.site/EDIMAX-BR-6208AC-V2_1-02-Command-Injection-Vulnerability-in-Web-formRoute-handler-2d3b5c52018a805983d3cf0780b28407?source=copy_link https://vuldb.com/?id.338647 https://vuldb.com/?submit.722426 https://vuldb.com/?ctiid.338647

Share on: