A vulnerability, which was classified as critical , has been found in Edimax EW-7478APC 1.04 . This affects the function formQoS of the file /goform/formQoS of the component POST Request Handler . The manipulation of the argument selSSID leads to buffer overflow. This vulnerability is referenced as CVE-2026-13580 . Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.