CVE-2026-32839

Name of the Vulnerable Software and Affected Versions Edimax GS-5008PL firmware versions prior to 1.00.54

Description The firmware does not properly protect against cross-site request forgery, potentially allowing remote attackers to perform unauthorized administrative actions. An attacker can induce logged-in administrators to visit malicious pages, exploiting the absence of anti-CSRF tokens and request validation. This could allow attackers to change passwords, upload firmware, reboot the device, perform factory resets, or modify network configurations.

Recommendations Update the firmware to a version newer than 1.00.54.