Unrated severityNVD Advisory· Published Aug 23, 2025· Updated Aug 25, 2025

Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 urlFilterManageRule stack-based overflow

CVE-2025-9362

Description

A flaw has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. The impacted element is the function urlFilterManageRule of the file /goform/urlFilterManageRule. Executing manipulation of the argument urlFilterRuleName/scheduleUrl/addURLFilter can lead to stack-based buffer overflow. The attack may be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Affected products

Linksys/RE6500llm-fuzzy
Range: = 1.1.05.003
Linksys/RE7000llm-fuzzy
Range: = 1.2.07.001
Linksys/RE9000llm-fuzzy
Range: = 1.2.07.001
Linksys/RE6300llm-fuzzy
Range: = 1.0.04.001
Linksys/RE6250llm-fuzzy
Range: = 1.0.013.001
Linksys/RE6350llm-fuzzy
Range: = 1.0.04.002
Linksys/RE6250v5
Range: 1.0.013.001
Linksys/RE6300v5
Range: 1.0.013.001
Linksys/RE6350v5
Range: 1.0.013.001
Linksys/RE6500v5
Range: 1.0.013.001
Linksys/RE7000v5
Range: 1.0.013.001
Linksys/RE9000v5
Range: 1.0.013.001

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

vuldb.commitrethird-party-advisory
github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_30/30.mdmitrerelated
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description
www.linksys.commitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000