Unrated severityNVD Advisory· Published Nov 1, 2014· Updated May 6, 2026

CVE-2014-8243

Description

Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900 devices allows remote attackers to obtain the administrator's MD5 password hash via a direct request for the /.htpasswd URI.

Affected products

Linksys/E4200v2
cpe:2.3:h:linksys:e4200v2:-:*:*:*:*:*:*:*
Linksys/Ea2700
cpe:2.3:h:linksys:ea2700:-:*:*:*:*:*:*:*
Linksys/Ea3500
cpe:2.3:h:linksys:ea3500:-:*:*:*:*:*:*:*
Linksys/Ea4500
cpe:2.3:h:linksys:ea4500:-:*:*:*:*:*:*:*
Linksys/Ea6200
cpe:2.3:h:linksys:ea6200:-:*:*:*:*:*:*:*
Linksys/Ea6300
cpe:2.3:h:linksys:ea6300:-:*:*:*:*:*:*:*
Linksys/Ea6400
cpe:2.3:h:linksys:ea6400:-:*:*:*:*:*:*:*
Linksys/Ea6500
cpe:2.3:h:linksys:ea6500:-:*:*:*:*:*:*:*
Linksys/Ea6700
cpe:2.3:h:linksys:ea6700:-:*:*:*:*:*:*:*
Linksys/Ea6900
cpe:2.3:h:linksys:ea6900:-:*:*:*:*:*:*:*
Linksys/E4200v2 Firmware
cpe:2.3:o:linksys:e4200v2_firmware:*:*:*:*:*:*:*:*
Range: <=2.0.14212.1
Linksys/Ea2700 Firmware
cpe:2.3:o:linksys:ea2700_firmware:*:*:*:*:*:*:*:*
Range: <=2.0.14294
Linksys/Ea3500 Firmware
cpe:2.3:o:linksys:ea3500_firmware:*:*:*:*:*:*:*:*
Range: <=2.0.14294
Linksys/Ea4500 Firmware
cpe:2.3:o:linksys:ea4500_firmware:*:*:*:*:*:*:*:*
Range: <=2.0.14212.1
Linksys/Ea6200 Firmware
cpe:2.3:o:linksys:ea6200_firmware:*:153743:*:*:*:*:*:*
Range: <=1.1.41
Linksys/Ea6300 Firmware
cpe:2.3:o:linksys:ea6300_firmware:*:153731:*:*:*:*:*:*
Range: <=1.1.40
Linksys/Ea6400 Firmware
cpe:2.3:o:linksys:ea6400_firmware:*:153731:*:*:*:*:*:*
Range: <=1.1.40
Linksys/Ea6500 Firmware
cpe:2.3:o:linksys:ea6500_firmware:*:153731:*:*:*:*:*:*
Range: <=1.1.40
Linksys/Ea6700 Firmware
cpe:2.3:o:linksys:ea6700_firmware:*:153731:*:*:*:*:*:*
Range: <=1.1.40
Linksys/Ea6900 Firmware
cpe:2.3:o:linksys:ea6900_firmware:*:158863:*:*:*:*:*:*
Range: <=1.1.42

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/447516nvdExploitPatchThird Party AdvisoryUS Government Resource

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000