PT-2020-17403 · Belkin · Linksys Ea6500

Re-Solver

Published

2020-12-26

Updated

2021-07-21

CVE-2020-35714

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Belkin LINKSYS RE6500 versions prior to 1.0.11.001

Description The issue allows remote authenticated users to execute arbitrary commands via the "goform/systemCommand?command=" endpoint in conjunction with the "goform/pingstart" program. This can be exploited by sending a malicious request to the "/goform/systemCommand?command=" endpoint.

Recommendations For versions prior to 1.0.11.001, update to version 1.0.11.001 or later to resolve the issue. As a temporary workaround, consider restricting access to the "goform/systemCommand" endpoint and the "goform/pingstart" program until a patch is applied. Avoid using the command variable in the affected API endpoint until the issue is resolved.

Exploit

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2020-35714

Affected Products

Linksys Ea6500

PT-2020-17403 · Belkin · Linksys Ea6500

CVE-2020-35714

Weakness Enumeration

Related Identifiers

Affected Products

References · 8