Unrated severityNVD Advisory· Published Aug 27, 2025· Updated Aug 27, 2025

Linksys E1700 QoSSetup stack-based overflow

CVE-2025-9527

Description

A vulnerability was found in Linksys E1700 1.0.0.4.003. This affects the function QoSSetup of the file /goform/QoSSetup. Performing manipulation of the argument ack_policy results in stack-based buffer overflow. The attack may be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Affected products

Linksys/E1700llm-fuzzy
Range: = 1.0.0.4.003
Linksys/E1700v5
Range: 1.0.0.4.003

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_60/60.mdmitreexploit
vuldb.commitrethird-party-advisory
github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_60/60.mdmitrerelated
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description
www.linksys.commitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000