CVE-2023-46012

Name of the Vulnerable Software and Affected Versions LINKSYS EA7500 version 3.0.1.207964

Description The issue allows a remote attacker to execute arbitrary code via an HTTP request to the IGD UPnP. This enables the attacker to potentially gain control over the device.

Recommendations For LINKSYS EA7500 version 3.0.1.207964, consider restricting access to the IGD UPnP service until a patch is available. As a temporary workaround, disabling the IGD UPnP service may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.