CNNVD-202602-219 Information

CNNVD ID

CNNVD-202602-219

Related CVE

CVE-2020-37096

• CNNVD Published: 2026-02-03

Description (Chinese)

Edimax EW-7438RPn是中国台湾讯舟（Edimax）公司的一款无线信号扩展器。 Edimax EW-7438RPn 1.13版本存在跨站请求伪造漏洞，该漏洞源于MAC过滤配置界面存在跨站请求伪造漏洞，攻击者可制作恶意网页诱骗用户将未经授权的MAC地址添加到设备的过滤规则中。

Description (English)

Edimax EW-7438RPn is a wireless signal extension of the Chinese company Edimax. The Edimax EW-7438RPn version 1.13 contains a false gap in cross-site requests, which stems from the fact that the MAC filter configuration interface contains a false gap in cross-site requests and that the assailant can create a malicious web page to lure users into adding unauthorized MAC addresses to the filtering rules of the device.

Hazard Level

High

Vulnerability Type

跨站请求伪造

Affected Vendor

讯舟

Published

2026-02-03

Last Modified

2026-02-24

References

https://www.edimax.com/edimax/merchandise/merchandise_detail/data/edimax/global/wi-fi_range_extenders_n300/ew-7438rpn_mini/ https://www.exploit-db.com/exploits/48366 https://www.vulncheck.com/advisories/edimax-ew-rpn-cross-site-request-forgery-mac-filtering