A vulnerability categorized as critical has been discovered in Edimax BR-6478AC 1.23 . This affects the function formiNICSiteSurvey of the file /goform/formiNICSiteSurvey of the component POST Request Handler . Executing a manipulation of the argument selSSID can lead to buffer overflow. This vulnerability is tracked as CVE-2026-9442 . The attack can be launched remotely. Moreover, an exploit is present. The vendor was contacted early about this disclosure but did not respond in any way.