CVE-2026-32839: Cross-Site Request Forgery (CSRF) in EDIMAX Technology Co., Ltd. Edimax GS-5008PL
Edimax GS-5008PL firmware version 1.00.54 and prior contain a cross-site request forgery vulnerability that allows remote attackers to perform unauthorized administrative actions by inducing logged-in administrators to visit malicious pages. Attackers can exploit the lack of anti-CSRF tokens and request validation to change passwords, upload firmware, reboot the device, perform factory resets, or modify network configurations.
AI Analysis
Technical Summary
CVE-2026-32839 is a CSRF vulnerability affecting Edimax GS-5008PL firmware version 1.00.54 and prior. The vulnerability arises from missing anti-CSRF protections, allowing attackers to trick authenticated administrators into executing unauthorized administrative commands. Actions that can be forced include password changes, firmware uploads, device reboots, factory resets, and network configuration changes. The vulnerability has a CVSS 4.0 score of 5.1 (medium severity). No patch or official fix information is available, and the device is not a cloud service, so remediation depends on vendor updates.
Potential Impact
Successful exploitation allows remote attackers to perform unauthorized administrative actions on the affected device by leveraging the lack of CSRF protections. This can compromise device integrity and availability by changing critical settings, uploading malicious firmware, or resetting the device. The impact is limited to devices running vulnerable firmware versions and requires the administrator to be logged in and visit a malicious page.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, administrators should avoid visiting untrusted web pages while logged into the device's management interface. Network-level protections such as restricting administrative access to trusted networks may reduce exposure.
CVE-2026-32839: Cross-Site Request Forgery (CSRF) in EDIMAX Technology Co., Ltd. Edimax GS-5008PL
Description
Edimax GS-5008PL firmware version 1.00.54 and prior contain a cross-site request forgery vulnerability that allows remote attackers to perform unauthorized administrative actions by inducing logged-in administrators to visit malicious pages. Attackers can exploit the lack of anti-CSRF tokens and request validation to change passwords, upload firmware, reboot the device, perform factory resets, or modify network configurations.
CVSS v4.0
Score 5.1medium
Affected software
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-32839 is a CSRF vulnerability affecting Edimax GS-5008PL firmware version 1.00.54 and prior. The vulnerability arises from missing anti-CSRF protections, allowing attackers to trick authenticated administrators into executing unauthorized administrative commands. Actions that can be forced include password changes, firmware uploads, device reboots, factory resets, and network configuration changes. The vulnerability has a CVSS 4.0 score of 5.1 (medium severity). No patch or official fix information is available, and the device is not a cloud service, so remediation depends on vendor updates.
Potential Impact
Successful exploitation allows remote attackers to perform unauthorized administrative actions on the affected device by leveraging the lack of CSRF protections. This can compromise device integrity and availability by changing critical settings, uploading malicious firmware, or resetting the device. The impact is limited to devices running vulnerable firmware versions and requires the administrator to be logged in and visit a malicious page.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, administrators should avoid visiting untrusted web pages while logged into the device's management interface. Network-level protections such as restricting administrative access to trusted networks may reduce exposure.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulnCheck
- Date Reserved
- 2026-03-16T18:11:41.757Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 69b9ce80771bdb1749db6345
Added to database: 3/17/2026, 9:58:24 PM
Last enriched: 5/9/2026, 1:45:08 AM
Last updated: 6/16/2026, 1:04:26 AM
Views: 119
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.