PT-2025-32502 · Linksys · Linksys Re7000+5
Pjq123
·
Publicado
2025-08-01
·
Atualizado
2025-08-16
·
CVE-2025-8824
CVSS v2.0
9.0
Alta
| Vetor | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
Linksys RE6250, RE6300, RE6350, RE6500, RE7000, and RE9000 versions up to 20250801
Description:
A vulnerability exists in the
setRIP function of the /goform/setRIP file. Manipulation of the RIPmode and RIPpasswd arguments leads to a stack-based buffer overflow, potentially allowing remote attackers to compromise the devices. The exploit has been publicly disclosed and may be actively exploited. The vendor was notified but did not respond.Recommendations:
Linksys RE6250 versions prior to 20250801
Linksys RE6300 versions prior to 20250801
Linksys RE6350 versions prior to 20250801
Linksys RE6500 versions prior to 20250801
Linksys RE7000 versions prior to 20250801
Linksys RE9000 versions prior to 20250801
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Buffer Overflow
Stack Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Linksys Re6250
Linksys Re6300
Linksys Re6350
Linksys Ea6500
Linksys Re7000
Linksys Re9000