CVE-2026-36734

EDIMAX · BR-6428nS V3

The EDIMAX BR-6428nS V3 router is affected by a high-severity vulnerability that could allow unauthorized remote access and total system compromise.

Executive summary

A critical vulnerability in the EDIMAX BR-6428nS V3 router exposes the device to unauthorized remote control and potential full system compromise.

Vulnerability

This is a network-accessible vulnerability that allows an authenticated user to perform actions leading to a full compromise of the device's confidentiality, integrity, and availability.

Business impact

Successful exploitation allows an attacker to gain full control over the network hardware, which can be used to intercept traffic, pivot into internal networks, or disrupt connectivity. With a CVSS score of 8.8, this vulnerability represents a severe risk to network infrastructure and perimeter security.

Remediation

Immediate Action: Check the EDIMAX official support portal for firmware updates and apply them immediately to the affected router hardware.

Proactive Monitoring: Monitor router logs for unauthorized configuration changes, unexpected administrative logins, or unusual outbound traffic from the device.

Compensating Controls: Restrict administrative access to the router’s web interface to a dedicated management VLAN or trusted IP addresses to limit exposure.

Exploitation status

Public Exploit Available: Unknown

Analyst recommendation

Given the critical nature of router-based vulnerabilities, immediate firmware updates are required to secure the device. Network administrators should ensure that administrative interfaces are not exposed to the public internet and that all firmware is kept current to mitigate this high-severity risk.