VYPR

Vendor CVEs

Linksys

All CVEs

234 total · sorted by risk
  • CVE-2024-8408Sep 4, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in Linksys WRT54G 4.21.5. It has been rated as critical. Affected by this issue is the function validate_services_port of the file /apply.cgi of the component POST Parameter Handler. The manipulation of the argument services_array leads to stack-based…

  • CVE-2024-42633Aug 19, 2024
    risk 0.00cvss epss 0.02

    A Command Injection vulnerability exists in the do_upgrade_post function of the httpd binary in Linksys E1500 v1.0.06.001. As a result, an authenticated attacker can execute OS commands with root privileges.

  • CVE-2024-40495Jul 24, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was discovered in Linksys Router E2500 with firmware 2.0.00, allows authenticated attackers to execute arbitrary code via the hnd_parentalctrl_unblock function.

  • CVE-2024-41281Jul 19, 2024
    risk 0.00cvss epss 0.00

    Linksys WRT54G v4.21.5 has a stack overflow vulnerability in get_merge_mac function.

  • CVE-2024-40750Jul 9, 2024
    risk 0.00cvss epss 0.00

    Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices send cleartext Wi-Fi passwords over the public Internet during app-based installation.

  • CVE-2023-30305May 28, 2024
    risk 0.00cvss epss 0.00

    An issue discovered in Linksys E5600 routers allows attackers to hijack TCP sessions which could lead to a denial of service.

  • CVE-2024-33788May 6, 2024
    risk 0.00cvss epss 0.02

    Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the PinCode parameter at /API/info form endpoint.

  • CVE-2024-22543Feb 27, 2024
    risk 0.00cvss epss 0.01

    An issue was discovered in Linksys Router E1700 1.0.04 (build 3), allows authenticated attackers to escalate privileges via a crafted GET request to the /goform/* URI or via the ExportSettings function.

  • CVE-2024-22544Feb 27, 2024
    risk 0.00cvss epss 0.09

    An issue was discovered in Linksys Router E1700 version 1.0.04 (build 3), allows authenticated attackers to execute arbitrary code via the setDateTime function.

  • CVE-2024-1406Feb 10, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in Linksys WRT54GL 4.30.18. It has been declared as problematic. This vulnerability affects unknown code of the file /SysInfo1.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been…

  • CVE-2024-1405Feb 10, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in Linksys WRT54GL 4.30.18. It has been classified as problematic. This affects an unknown part of the file /wlaninfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been disclosed to the…

  • CVE-2024-1404Feb 9, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in Linksys WRT54GL 4.30.18 and classified as problematic. Affected by this issue is some unknown functionality of the file /SysInfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been…

  • CVE-2022-43972Jan 9, 2023
    risk 0.00cvss epss 0.01

    A null pointer dereference vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A null pointer dereference in the soap_action function within the upnp binary can be triggered by an unauthenticated attacker via a malicious POST request…

  • CVE-2022-43973Jan 9, 2023
    risk 0.00cvss epss 0.02

    An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. The Check_TSSI function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated attacker with…

  • CVE-2022-43970Jan 9, 2023
    risk 0.00cvss epss 0.19

    A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A stack-based buffer overflow in the Start_EPI function within the httpd binary allows an authenticated attacker with administrator privileges to execute arbitrary…

  • CVE-2022-43971Jan 9, 2023
    risk 0.00cvss epss 0.02

    An arbitrary code exection vulnerability exists in Linksys WUMC710 Wireless-AC Universal Media Connector with firmware <= 1.0.02 (build3). The do_setNTP function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated…

  • CVE-2022-35572Sep 12, 2022
    risk 0.00cvss epss 0.01

    On Linksys E5350 WiFi Router with firmware version 1.0.00.037 and lower, (and potentially other vendors/devices due to code reuse), the /SysInfo.htm URI does not require a session ID. This web page calls a show_sysinfo function which retrieves WPA passwords, SSIDs, MAC…

  • CVE-2022-38555Aug 28, 2022
    risk 0.00cvss epss 0.12

    Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name.

  • CVE-2022-38132Aug 23, 2022
    risk 0.00cvss epss 0.01

    Command injection vulnerability in Linksys MR8300 router while Registration to DDNS Service. By specifying username and password, an attacker connected to the router's web interface can execute arbitrary OS commands. The username and password fields are not sanitized correctly…

  • CVE-2022-24372Apr 27, 2022
    risk 0.00cvss epss 0.00

    Linksys MR9600 devices before 2.0.5 allow attackers to read arbitrary files via a symbolic link to the root directory of a NAS SMB share.

  • CVE-2021-25310Feb 2, 2021
    risk 0.00cvss epss 0.05

    The administration web interface on Belkin Linksys WRT160NL 1.0.04.002_US_20130619 devices allows remote authenticated attackers to execute system commands with root privileges via shell metacharacters in the ui_language POST parameter to the apply.cgi form endpoint. This occurs…

  • CVE-2020-35714Dec 26, 2020
    risk 0.00cvss epss 0.03

    Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authenticated users to execute arbitrary commands via goform/systemCommand?command= in conjunction with the goform/pingstart program.

  • CVE-2020-35715Dec 26, 2020
    risk 0.00cvss epss 0.04

    Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote authenticated users to execute arbitrary commands via shell metacharacters in a filename to the upload_settings.cgi page.

  • CVE-2020-35716Dec 26, 2020
    risk 0.00cvss epss 0.04

    Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attackers to cause a persistent denial of service (segmentation fault) via a long /goform/langSwitch langSelectionOnly parameter.

  • CVE-2009-5140Feb 12, 2020
    risk 0.00cvss epss 0.01

    The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue.

  • CVE-2013-3067Feb 7, 2020
    risk 0.00cvss epss 0.01

    Linksys WRT310Nv2 2.0.0.1 is vulnerable to XSS.

  • CVE-2019-16340Nov 21, 2019
    risk 0.00cvss epss 0.19

    Belkin Linksys Velop 1.1.8.192419 devices allows remote attackers to discover the recovery key via a direct request for the /sysinfo_json.cgi URI.

  • CVE-2013-4658Oct 25, 2019
    risk 0.00cvss epss 0.09

    Linksys EA6500 has SMB Symlink Traversal allowing symbolic links to be created to locations outside of the Samba share.

  • CVE-2019-11535Jul 17, 2019
    risk 0.00cvss epss 0.05

    Unsanitized user input in the web interface for Linksys WiFi extender products (RE6400 and RE6300 through 1.2.04.022) allows for remote command execution. An attacker can access system OS configurations and commands that are not intended for use beyond the web UI.

  • CVE-2019-7579Jun 17, 2019
    risk 0.00cvss epss 0.02

    An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. An ability exists for an unauthenticated user to browse a confidential ui/1.0.99.187766/dynamic/js/setup.js.localized file on the router's webserver, allowing for an attacker to identify possible passwords that…

  • CVE-2019-7311Jun 6, 2019
    risk 0.00cvss epss 0.00

    An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. A lack of encryption in how the user login cookie (admin-auth) is stored on a victim's computer results in the admin password being discoverable by a local attacker, and usable to gain administrative access to…

  • CVE-2018-3955Oct 17, 2018
    risk 0.00cvss epss 0.05

    An exploitable operating system command injection exists in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04). Specially crafted entries to network configuration information can cause execution of arbitrary…

  • CVE-2014-8244Nov 1, 2014
    risk 0.00cvss epss 0.04

    Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900…

  • CVE-2014-8243Nov 1, 2014
    risk 0.00cvss epss 0.01

    Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900…

  • CVE-2013-3068Sep 29, 2014
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in apply.cgi in Linksys WRT310Nv2 2.0.0.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords and modify remote management ports.

  • CVE-2013-3066Sep 29, 2014
    risk 0.00cvss epss 0.02

    Linksys EA6500 with firmware 1.1.28.147876 does not properly restrict access, which allows remote attackers to obtain sensitive information (clients and router configuration) via a request to /JNAP/.

  • CVE-2013-3065Sep 29, 2014
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in the Parental Controls section in Linksys EA6500 with firmware 1.1.28.147876 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to the Blocked Specific Sites section.

  • CVE-2013-3064Sep 29, 2014
    risk 0.00cvss epss 0.01

    Open redirect vulnerability in ui/dynamic/unsecured.html in Linksys EA6500 with firmware 1.1.28.147876 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the target parameter.

  • CVE-2011-4500Nov 22, 2011
    risk 0.00cvss epss 0.01

    The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOAP server to listen on the WAN port, which allows remote attackers to administer the firewall via SOAP requests.

  • CVE-2011-4499Nov 22, 2011
    risk 0.00cvss epss 0.01

    The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a…

  • CVE-2010-2506Jun 28, 2010
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in debug.cgi in Linksys WAP54Gv3 firmware 3.05.03 and 3.04.03 allows remote attackers to inject arbitrary web script or HTML via the data1 parameter.

  • CVE-2010-2261Jun 10, 2010
    risk 0.00cvss epss 0.03

    Linksys WAP54Gv3 firmware 3.04.03 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) data2 and (2) data3 parameters to (a) Debug_command_page.asp and (b) debug.cgi.

  • CVE-2007-5475Nov 12, 2009
    risk 0.00cvss epss 0.02

    Multiple buffer overflows in the Marvell wireless driver, as used in Linksys WAP4400N Wi-Fi access point with firmware 1.2.17 on the Marvell 88W8361P-BEM1 chipset, and other products, allow remote 802.11-authenticated users to cause a denial of service (wireless access point…

  • CVE-2009-3341Sep 24, 2009
    risk 0.00cvss epss 0.05

    Buffer overflow on the Linksys WRT54GL wireless router allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.10 through 8.11. NOTE: as of 20090917, this disclosure has no actionable…

  • CVE-2009-2073Jun 15, 2009
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in Linksys WRT160N wireless router hardware 1 and firmware 1.02.2 allows remote attackers to hijack the authentication of other users for unspecified requests via unknown vectors, as demonstrated using administrator privileges and…

  • CVE-2008-4594Oct 17, 2008
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in the SNMPv3 component in Linksys WAP4400N firmware 1.2.14 on the Marvell Semiconductor 88W8361P-BEM1 chipset has unknown impact and attack vectors, probably remote.

  • CVE-2008-4441Oct 14, 2008
    risk 0.00cvss epss 0.02

    The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service (reboot or hang-up) via…

  • CVE-2008-4296Sep 27, 2008
    risk 0.00cvss epss 0.02

    The Cisco Linksys WRT350N with firmware 1.0.3.7 has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access.

  • CVE-2007-5474Sep 5, 2008
    risk 0.00cvss epss 0.02

    The driver for the Linksys WRT350N Wi-Fi access point with firmware 2.00.17 on the Atheros AR5416-AC1E chipset does not properly parse the Atheros vendor-specific information element in an association request, which allows remote authenticated users to cause a denial of service…

  • CVE-2007-6707Mar 13, 2008
    risk 0.00cvss epss 0.01

    Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574.

Page 4 of 5