CVE-2025-14093 – This CVE describes an OS command injection vuln... (How to Fix)

Q: What is the severity of CVE-2025-14093?

CVE-2025-14093 has a CVSS score of 4.7 (MEDIUM). This CVE describes an OS command injection vulnerability in Edimax BR-6478AC V3 routers. Attackers can remotely execute arbitrary commands by manipulating the 'host' parameter in the traceroute diagnostic function. All users of affected router versions are vulnerable to potential system compromise.

📋 TL;DR

This CVE describes an OS command injection vulnerability in Edimax BR-6478AC V3 routers. Attackers can remotely execute arbitrary commands by manipulating the 'host' parameter in the traceroute diagnostic function. All users of affected router versions are vulnerable to potential system compromise.

💻 Affected Systems

Products:

Edimax BR-6478AC V3

Versions: 1.0.15

Operating Systems: Embedded router firmware

Default Config Vulnerable: ⚠️ Yes

Notes: All devices running the vulnerable firmware version are affected. The vulnerability is in the web interface's diagnostic function.

📦 What is this software?

Br 6478ac V3 Firmware by Edimax

View all CVEs affecting Br 6478ac V3 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete router takeover allowing installation of persistent backdoors, network traffic interception, lateral movement to connected devices, and bricking of the device.

🟠

Likely Case

Router configuration modification, credential theft, DNS hijacking, and creation of botnet nodes for DDoS attacks.

🟢

If Mitigated

Limited impact with proper network segmentation, but still potential for router compromise if exposed.

🌐 Internet-Facing: HIGH - Attack can be launched remotely without authentication, making internet-facing routers immediate targets.

🏢 Internal Only: MEDIUM - Internal attackers or malware could exploit this to pivot within networks.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Public exploit details available on GitHub. Attack requires no authentication and uses simple command injection techniques.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: Yes

Instructions:

No official patch available. Vendor has not responded to disclosure. Consider replacing affected devices or implementing strict network controls.

🔧 Temporary Workarounds

Disable web interface remote access

all

Prevent external access to the vulnerable web interface

Access router admin interface -> Advanced Settings -> Remote Management -> Disable

Block traceroute diagnostic page

linux

Use firewall rules to block access to the vulnerable endpoint

iptables -A INPUT -p tcp --dport 80 -m string --string "/boafrm/formTracerouteDiagnosticRun" --algo bm -j DROP

🧯 If You Can't Patch

Segment affected routers in isolated VLANs with strict firewall rules
Implement network monitoring for unusual outbound connections from routers

🔍 How to Verify

Check if Vulnerable:

Check router firmware version in admin interface. If version is 1.0.15, device is vulnerable.

Check Version:

Login to router web interface and check System Status or About page

Verify Fix Applied:

No fix available to verify. Monitor for firmware updates from vendor.

📡 Detection & Monitoring

Log Indicators:

Unusual POST requests to /boafrm/formTracerouteDiagnosticRun with shell metacharacters
Router logs showing command execution attempts

Network Indicators:

Unexpected outbound connections from router to external IPs
DNS queries for command-and-control domains from router

SIEM Query:

source="router_logs" AND uri="/boafrm/formTracerouteDiagnosticRun" AND (host="*;*" OR host="*|*" OR host="*`*" OR host="*$(*")

📊 Metadata

CVE ID: CVE-2025-14093

CVSS v3 Score: 4.7 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-77

EPSS Score: 0.37% exploit probability (58th percentile)

Published: December 5, 2025

Last Updated: December 11, 2025

🔗 References

https://github.com/Kriswu1337/CVE/blob/main/EDIMAX/1/2.md Exploit,Third Party Advisory
https://vuldb.com/?ctiid.334483 Permissions Required,VDB Entry
https://vuldb.com/?id.334483 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.696633 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-14093, you might also want to check these: