CVE-2025-5440

Name of the Vulnerable Software and Affected Versions Linksys RE6500, RE6250, RE6300, RE6350, RE7000, and RE9000 versions 1.0.013.001 through 1.2.07.001

Description A critical vulnerability has been found in the Linksys RE-series range extenders. This affects the NTP function of the file /goform/NTP. The manipulation of the arguments manual year select, manual month select, manual day select, manual hour select, manual min select, and manual sec select leads to OS command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond.

Recommendations As a temporary workaround, consider disabling the NTP function of the file /goform/NTP until a patch is available. Restrict access to the /goform/NTP file to minimize the risk of exploitation. Avoid using the arguments manual year select, manual month select, manual day select, manual hour select, manual min select, and manual sec select in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.