Vendor CVEs
Linksys
All CVEs
234 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-8408 | 0.00 | — | 0.01 | Sep 4, 2024 | A vulnerability was found in Linksys WRT54G 4.21.5. It has been rated as critical. Affected by this issue is the function validate_services_port of the file /apply.cgi of the component POST Parameter Handler. The manipulation of the argument services_array leads to stack-based… | |||
| CVE-2024-42633 | 0.00 | — | 0.02 | Aug 19, 2024 | A Command Injection vulnerability exists in the do_upgrade_post function of the httpd binary in Linksys E1500 v1.0.06.001. As a result, an authenticated attacker can execute OS commands with root privileges. | |||
| CVE-2024-40495 | 0.00 | — | 0.01 | Jul 24, 2024 | A vulnerability was discovered in Linksys Router E2500 with firmware 2.0.00, allows authenticated attackers to execute arbitrary code via the hnd_parentalctrl_unblock function. | |||
| CVE-2024-41281 | 0.00 | — | 0.00 | Jul 19, 2024 | Linksys WRT54G v4.21.5 has a stack overflow vulnerability in get_merge_mac function. | |||
| CVE-2024-40750 | 0.00 | — | 0.00 | Jul 9, 2024 | Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices send cleartext Wi-Fi passwords over the public Internet during app-based installation. | |||
| CVE-2023-30305 | 0.00 | — | 0.00 | May 28, 2024 | An issue discovered in Linksys E5600 routers allows attackers to hijack TCP sessions which could lead to a denial of service. | |||
| CVE-2024-33788 | 0.00 | — | 0.02 | May 6, 2024 | Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the PinCode parameter at /API/info form endpoint. | |||
| CVE-2024-22543 | 0.00 | — | 0.01 | Feb 27, 2024 | An issue was discovered in Linksys Router E1700 1.0.04 (build 3), allows authenticated attackers to escalate privileges via a crafted GET request to the /goform/* URI or via the ExportSettings function. | |||
| CVE-2024-22544 | 0.00 | — | 0.09 | Feb 27, 2024 | An issue was discovered in Linksys Router E1700 version 1.0.04 (build 3), allows authenticated attackers to execute arbitrary code via the setDateTime function. | |||
| CVE-2024-1406 | 0.00 | — | 0.00 | Feb 10, 2024 | A vulnerability was found in Linksys WRT54GL 4.30.18. It has been declared as problematic. This vulnerability affects unknown code of the file /SysInfo1.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been… | |||
| CVE-2024-1405 | 0.00 | — | 0.00 | Feb 10, 2024 | A vulnerability was found in Linksys WRT54GL 4.30.18. It has been classified as problematic. This affects an unknown part of the file /wlaninfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been disclosed to the… | |||
| CVE-2024-1404 | 0.00 | — | 0.01 | Feb 9, 2024 | A vulnerability was found in Linksys WRT54GL 4.30.18 and classified as problematic. Affected by this issue is some unknown functionality of the file /SysInfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been… | |||
| CVE-2022-43972 | 0.00 | — | 0.01 | Jan 9, 2023 | A null pointer dereference vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A null pointer dereference in the soap_action function within the upnp binary can be triggered by an unauthenticated attacker via a malicious POST request… | |||
| CVE-2022-43973 | 0.00 | — | 0.02 | Jan 9, 2023 | An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. The Check_TSSI function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated attacker with… | |||
| CVE-2022-43970 | 0.00 | — | 0.19 | Jan 9, 2023 | A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A stack-based buffer overflow in the Start_EPI function within the httpd binary allows an authenticated attacker with administrator privileges to execute arbitrary… | |||
| CVE-2022-43971 | 0.00 | — | 0.02 | Jan 9, 2023 | An arbitrary code exection vulnerability exists in Linksys WUMC710 Wireless-AC Universal Media Connector with firmware <= 1.0.02 (build3). The do_setNTP function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated… | |||
| CVE-2022-35572 | 0.00 | — | 0.01 | Sep 12, 2022 | On Linksys E5350 WiFi Router with firmware version 1.0.00.037 and lower, (and potentially other vendors/devices due to code reuse), the /SysInfo.htm URI does not require a session ID. This web page calls a show_sysinfo function which retrieves WPA passwords, SSIDs, MAC… | |||
| CVE-2022-38555 | 0.00 | — | 0.12 | Aug 28, 2022 | Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name. | |||
| CVE-2022-38132 | 0.00 | — | 0.01 | Aug 23, 2022 | Command injection vulnerability in Linksys MR8300 router while Registration to DDNS Service. By specifying username and password, an attacker connected to the router's web interface can execute arbitrary OS commands. The username and password fields are not sanitized correctly… | |||
| CVE-2022-24372 | 0.00 | — | 0.00 | Apr 27, 2022 | Linksys MR9600 devices before 2.0.5 allow attackers to read arbitrary files via a symbolic link to the root directory of a NAS SMB share. | |||
| CVE-2021-25310 | 0.00 | — | 0.05 | Feb 2, 2021 | The administration web interface on Belkin Linksys WRT160NL 1.0.04.002_US_20130619 devices allows remote authenticated attackers to execute system commands with root privileges via shell metacharacters in the ui_language POST parameter to the apply.cgi form endpoint. This occurs… | |||
| CVE-2020-35714 | 0.00 | — | 0.03 | Dec 26, 2020 | Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authenticated users to execute arbitrary commands via goform/systemCommand?command= in conjunction with the goform/pingstart program. | |||
| CVE-2020-35715 | 0.00 | — | 0.04 | Dec 26, 2020 | Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote authenticated users to execute arbitrary commands via shell metacharacters in a filename to the upload_settings.cgi page. | |||
| CVE-2020-35716 | 0.00 | — | 0.04 | Dec 26, 2020 | Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attackers to cause a persistent denial of service (segmentation fault) via a long /goform/langSwitch langSelectionOnly parameter. | |||
| CVE-2009-5140 | 0.00 | — | 0.01 | Feb 12, 2020 | The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue. | |||
| CVE-2013-3067 | 0.00 | — | 0.01 | Feb 7, 2020 | Linksys WRT310Nv2 2.0.0.1 is vulnerable to XSS. | |||
| CVE-2019-16340 | 0.00 | — | 0.19 | Nov 21, 2019 | Belkin Linksys Velop 1.1.8.192419 devices allows remote attackers to discover the recovery key via a direct request for the /sysinfo_json.cgi URI. | |||
| CVE-2013-4658 | 0.00 | — | 0.09 | Oct 25, 2019 | Linksys EA6500 has SMB Symlink Traversal allowing symbolic links to be created to locations outside of the Samba share. | |||
| CVE-2019-11535 | 0.00 | — | 0.05 | Jul 17, 2019 | Unsanitized user input in the web interface for Linksys WiFi extender products (RE6400 and RE6300 through 1.2.04.022) allows for remote command execution. An attacker can access system OS configurations and commands that are not intended for use beyond the web UI. | |||
| CVE-2019-7579 | 0.00 | — | 0.02 | Jun 17, 2019 | An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. An ability exists for an unauthenticated user to browse a confidential ui/1.0.99.187766/dynamic/js/setup.js.localized file on the router's webserver, allowing for an attacker to identify possible passwords that… | |||
| CVE-2019-7311 | 0.00 | — | 0.00 | Jun 6, 2019 | An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. A lack of encryption in how the user login cookie (admin-auth) is stored on a victim's computer results in the admin password being discoverable by a local attacker, and usable to gain administrative access to… | |||
| CVE-2018-3955 | 0.00 | — | 0.05 | Oct 17, 2018 | An exploitable operating system command injection exists in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04). Specially crafted entries to network configuration information can cause execution of arbitrary… | |||
| CVE-2014-8244 | 0.00 | — | 0.04 | Nov 1, 2014 | Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900… | |||
| CVE-2014-8243 | 0.00 | — | 0.01 | Nov 1, 2014 | Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900… | |||
| CVE-2013-3068 | 0.00 | — | 0.01 | Sep 29, 2014 | Cross-site request forgery (CSRF) vulnerability in apply.cgi in Linksys WRT310Nv2 2.0.0.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords and modify remote management ports. | |||
| CVE-2013-3066 | 0.00 | — | 0.02 | Sep 29, 2014 | Linksys EA6500 with firmware 1.1.28.147876 does not properly restrict access, which allows remote attackers to obtain sensitive information (clients and router configuration) via a request to /JNAP/. | |||
| CVE-2013-3065 | 0.00 | — | 0.01 | Sep 29, 2014 | Cross-site scripting (XSS) vulnerability in the Parental Controls section in Linksys EA6500 with firmware 1.1.28.147876 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to the Blocked Specific Sites section. | |||
| CVE-2013-3064 | 0.00 | — | 0.01 | Sep 29, 2014 | Open redirect vulnerability in ui/dynamic/unsecured.html in Linksys EA6500 with firmware 1.1.28.147876 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the target parameter. | |||
| CVE-2011-4500 | 0.00 | — | 0.01 | Nov 22, 2011 | The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOAP server to listen on the WAN port, which allows remote attackers to administer the firewall via SOAP requests. | |||
| CVE-2011-4499 | 0.00 | — | 0.01 | Nov 22, 2011 | The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a… | |||
| CVE-2010-2506 | 0.00 | — | 0.01 | Jun 28, 2010 | Cross-site scripting (XSS) vulnerability in debug.cgi in Linksys WAP54Gv3 firmware 3.05.03 and 3.04.03 allows remote attackers to inject arbitrary web script or HTML via the data1 parameter. | |||
| CVE-2010-2261 | 0.00 | — | 0.03 | Jun 10, 2010 | Linksys WAP54Gv3 firmware 3.04.03 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) data2 and (2) data3 parameters to (a) Debug_command_page.asp and (b) debug.cgi. | |||
| CVE-2007-5475 | 0.00 | — | 0.02 | Nov 12, 2009 | Multiple buffer overflows in the Marvell wireless driver, as used in Linksys WAP4400N Wi-Fi access point with firmware 1.2.17 on the Marvell 88W8361P-BEM1 chipset, and other products, allow remote 802.11-authenticated users to cause a denial of service (wireless access point… | |||
| CVE-2009-3341 | 0.00 | — | 0.05 | Sep 24, 2009 | Buffer overflow on the Linksys WRT54GL wireless router allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.10 through 8.11. NOTE: as of 20090917, this disclosure has no actionable… | |||
| CVE-2009-2073 | 0.00 | — | 0.01 | Jun 15, 2009 | Cross-site request forgery (CSRF) vulnerability in Linksys WRT160N wireless router hardware 1 and firmware 1.02.2 allows remote attackers to hijack the authentication of other users for unspecified requests via unknown vectors, as demonstrated using administrator privileges and… | |||
| CVE-2008-4594 | 0.00 | — | 0.01 | Oct 17, 2008 | Unspecified vulnerability in the SNMPv3 component in Linksys WAP4400N firmware 1.2.14 on the Marvell Semiconductor 88W8361P-BEM1 chipset has unknown impact and attack vectors, probably remote. | |||
| CVE-2008-4441 | 0.00 | — | 0.02 | Oct 14, 2008 | The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service (reboot or hang-up) via… | |||
| CVE-2008-4296 | 0.00 | — | 0.02 | Sep 27, 2008 | The Cisco Linksys WRT350N with firmware 1.0.3.7 has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access. | |||
| CVE-2007-5474 | 0.00 | — | 0.02 | Sep 5, 2008 | The driver for the Linksys WRT350N Wi-Fi access point with firmware 2.00.17 on the Atheros AR5416-AC1E chipset does not properly parse the Atheros vendor-specific information element in an association request, which allows remote authenticated users to cause a denial of service… | |||
| CVE-2007-6707 | 0.00 | — | 0.01 | Mar 13, 2008 | Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574. |
- CVE-2024-8408Sep 4, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in Linksys WRT54G 4.21.5. It has been rated as critical. Affected by this issue is the function validate_services_port of the file /apply.cgi of the component POST Parameter Handler. The manipulation of the argument services_array leads to stack-based…
- CVE-2024-42633Aug 19, 2024risk 0.00cvss —epss 0.02
A Command Injection vulnerability exists in the do_upgrade_post function of the httpd binary in Linksys E1500 v1.0.06.001. As a result, an authenticated attacker can execute OS commands with root privileges.
- CVE-2024-40495Jul 24, 2024risk 0.00cvss —epss 0.01
A vulnerability was discovered in Linksys Router E2500 with firmware 2.0.00, allows authenticated attackers to execute arbitrary code via the hnd_parentalctrl_unblock function.
- CVE-2024-41281Jul 19, 2024risk 0.00cvss —epss 0.00
Linksys WRT54G v4.21.5 has a stack overflow vulnerability in get_merge_mac function.
- CVE-2024-40750Jul 9, 2024risk 0.00cvss —epss 0.00
Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices send cleartext Wi-Fi passwords over the public Internet during app-based installation.
- CVE-2023-30305May 28, 2024risk 0.00cvss —epss 0.00
An issue discovered in Linksys E5600 routers allows attackers to hijack TCP sessions which could lead to a denial of service.
- CVE-2024-33788May 6, 2024risk 0.00cvss —epss 0.02
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the PinCode parameter at /API/info form endpoint.
- CVE-2024-22543Feb 27, 2024risk 0.00cvss —epss 0.01
An issue was discovered in Linksys Router E1700 1.0.04 (build 3), allows authenticated attackers to escalate privileges via a crafted GET request to the /goform/* URI or via the ExportSettings function.
- CVE-2024-22544Feb 27, 2024risk 0.00cvss —epss 0.09
An issue was discovered in Linksys Router E1700 version 1.0.04 (build 3), allows authenticated attackers to execute arbitrary code via the setDateTime function.
- CVE-2024-1406Feb 10, 2024risk 0.00cvss —epss 0.00
A vulnerability was found in Linksys WRT54GL 4.30.18. It has been declared as problematic. This vulnerability affects unknown code of the file /SysInfo1.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been…
- CVE-2024-1405Feb 10, 2024risk 0.00cvss —epss 0.00
A vulnerability was found in Linksys WRT54GL 4.30.18. It has been classified as problematic. This affects an unknown part of the file /wlaninfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been disclosed to the…
- CVE-2024-1404Feb 9, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in Linksys WRT54GL 4.30.18 and classified as problematic. Affected by this issue is some unknown functionality of the file /SysInfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been…
- CVE-2022-43972Jan 9, 2023risk 0.00cvss —epss 0.01
A null pointer dereference vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A null pointer dereference in the soap_action function within the upnp binary can be triggered by an unauthenticated attacker via a malicious POST request…
- CVE-2022-43973Jan 9, 2023risk 0.00cvss —epss 0.02
An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. The Check_TSSI function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated attacker with…
- CVE-2022-43970Jan 9, 2023risk 0.00cvss —epss 0.19
A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A stack-based buffer overflow in the Start_EPI function within the httpd binary allows an authenticated attacker with administrator privileges to execute arbitrary…
- CVE-2022-43971Jan 9, 2023risk 0.00cvss —epss 0.02
An arbitrary code exection vulnerability exists in Linksys WUMC710 Wireless-AC Universal Media Connector with firmware <= 1.0.02 (build3). The do_setNTP function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated…
- CVE-2022-35572Sep 12, 2022risk 0.00cvss —epss 0.01
On Linksys E5350 WiFi Router with firmware version 1.0.00.037 and lower, (and potentially other vendors/devices due to code reuse), the /SysInfo.htm URI does not require a session ID. This web page calls a show_sysinfo function which retrieves WPA passwords, SSIDs, MAC…
- CVE-2022-38555Aug 28, 2022risk 0.00cvss —epss 0.12
Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name.
- CVE-2022-38132Aug 23, 2022risk 0.00cvss —epss 0.01
Command injection vulnerability in Linksys MR8300 router while Registration to DDNS Service. By specifying username and password, an attacker connected to the router's web interface can execute arbitrary OS commands. The username and password fields are not sanitized correctly…
- CVE-2022-24372Apr 27, 2022risk 0.00cvss —epss 0.00
Linksys MR9600 devices before 2.0.5 allow attackers to read arbitrary files via a symbolic link to the root directory of a NAS SMB share.
- CVE-2021-25310Feb 2, 2021risk 0.00cvss —epss 0.05
The administration web interface on Belkin Linksys WRT160NL 1.0.04.002_US_20130619 devices allows remote authenticated attackers to execute system commands with root privileges via shell metacharacters in the ui_language POST parameter to the apply.cgi form endpoint. This occurs…
- CVE-2020-35714Dec 26, 2020risk 0.00cvss —epss 0.03
Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authenticated users to execute arbitrary commands via goform/systemCommand?command= in conjunction with the goform/pingstart program.
- CVE-2020-35715Dec 26, 2020risk 0.00cvss —epss 0.04
Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote authenticated users to execute arbitrary commands via shell metacharacters in a filename to the upload_settings.cgi page.
- CVE-2020-35716Dec 26, 2020risk 0.00cvss —epss 0.04
Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attackers to cause a persistent denial of service (segmentation fault) via a long /goform/langSwitch langSelectionOnly parameter.
- CVE-2009-5140Feb 12, 2020risk 0.00cvss —epss 0.01
The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue.
- CVE-2013-3067Feb 7, 2020risk 0.00cvss —epss 0.01
Linksys WRT310Nv2 2.0.0.1 is vulnerable to XSS.
- CVE-2019-16340Nov 21, 2019risk 0.00cvss —epss 0.19
Belkin Linksys Velop 1.1.8.192419 devices allows remote attackers to discover the recovery key via a direct request for the /sysinfo_json.cgi URI.
- CVE-2013-4658Oct 25, 2019risk 0.00cvss —epss 0.09
Linksys EA6500 has SMB Symlink Traversal allowing symbolic links to be created to locations outside of the Samba share.
- CVE-2019-11535Jul 17, 2019risk 0.00cvss —epss 0.05
Unsanitized user input in the web interface for Linksys WiFi extender products (RE6400 and RE6300 through 1.2.04.022) allows for remote command execution. An attacker can access system OS configurations and commands that are not intended for use beyond the web UI.
- CVE-2019-7579Jun 17, 2019risk 0.00cvss —epss 0.02
An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. An ability exists for an unauthenticated user to browse a confidential ui/1.0.99.187766/dynamic/js/setup.js.localized file on the router's webserver, allowing for an attacker to identify possible passwords that…
- CVE-2019-7311Jun 6, 2019risk 0.00cvss —epss 0.00
An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. A lack of encryption in how the user login cookie (admin-auth) is stored on a victim's computer results in the admin password being discoverable by a local attacker, and usable to gain administrative access to…
- CVE-2018-3955Oct 17, 2018risk 0.00cvss —epss 0.05
An exploitable operating system command injection exists in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04). Specially crafted entries to network configuration information can cause execution of arbitrary…
- CVE-2014-8244Nov 1, 2014risk 0.00cvss —epss 0.04
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900…
- CVE-2014-8243Nov 1, 2014risk 0.00cvss —epss 0.01
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900…
- CVE-2013-3068Sep 29, 2014risk 0.00cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in apply.cgi in Linksys WRT310Nv2 2.0.0.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords and modify remote management ports.
- CVE-2013-3066Sep 29, 2014risk 0.00cvss —epss 0.02
Linksys EA6500 with firmware 1.1.28.147876 does not properly restrict access, which allows remote attackers to obtain sensitive information (clients and router configuration) via a request to /JNAP/.
- CVE-2013-3065Sep 29, 2014risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in the Parental Controls section in Linksys EA6500 with firmware 1.1.28.147876 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to the Blocked Specific Sites section.
- CVE-2013-3064Sep 29, 2014risk 0.00cvss —epss 0.01
Open redirect vulnerability in ui/dynamic/unsecured.html in Linksys EA6500 with firmware 1.1.28.147876 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the target parameter.
- CVE-2011-4500Nov 22, 2011risk 0.00cvss —epss 0.01
The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOAP server to listen on the WAN port, which allows remote attackers to administer the firewall via SOAP requests.
- CVE-2011-4499Nov 22, 2011risk 0.00cvss —epss 0.01
The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a…
- CVE-2010-2506Jun 28, 2010risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in debug.cgi in Linksys WAP54Gv3 firmware 3.05.03 and 3.04.03 allows remote attackers to inject arbitrary web script or HTML via the data1 parameter.
- CVE-2010-2261Jun 10, 2010risk 0.00cvss —epss 0.03
Linksys WAP54Gv3 firmware 3.04.03 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) data2 and (2) data3 parameters to (a) Debug_command_page.asp and (b) debug.cgi.
- CVE-2007-5475Nov 12, 2009risk 0.00cvss —epss 0.02
Multiple buffer overflows in the Marvell wireless driver, as used in Linksys WAP4400N Wi-Fi access point with firmware 1.2.17 on the Marvell 88W8361P-BEM1 chipset, and other products, allow remote 802.11-authenticated users to cause a denial of service (wireless access point…
- CVE-2009-3341Sep 24, 2009risk 0.00cvss —epss 0.05
Buffer overflow on the Linksys WRT54GL wireless router allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.10 through 8.11. NOTE: as of 20090917, this disclosure has no actionable…
- CVE-2009-2073Jun 15, 2009risk 0.00cvss —epss 0.01
Cross-site request forgery (CSRF) vulnerability in Linksys WRT160N wireless router hardware 1 and firmware 1.02.2 allows remote attackers to hijack the authentication of other users for unspecified requests via unknown vectors, as demonstrated using administrator privileges and…
- CVE-2008-4594Oct 17, 2008risk 0.00cvss —epss 0.01
Unspecified vulnerability in the SNMPv3 component in Linksys WAP4400N firmware 1.2.14 on the Marvell Semiconductor 88W8361P-BEM1 chipset has unknown impact and attack vectors, probably remote.
- CVE-2008-4441Oct 14, 2008risk 0.00cvss —epss 0.02
The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service (reboot or hang-up) via…
- CVE-2008-4296Sep 27, 2008risk 0.00cvss —epss 0.02
The Cisco Linksys WRT350N with firmware 1.0.3.7 has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access.
- CVE-2007-5474Sep 5, 2008risk 0.00cvss —epss 0.02
The driver for the Linksys WRT350N Wi-Fi access point with firmware 2.00.17 on the Atheros AR5416-AC1E chipset does not properly parse the Atheros vendor-specific information element in an association request, which allows remote authenticated users to cause a denial of service…
- CVE-2007-6707Mar 13, 2008risk 0.00cvss —epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574.
Page 4 of 5