A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been classified as critical . This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler . This manipulation of the argument interface causes command injection. This vulnerability is handled as CVE-2026-12808 . The attack can be initiated remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.