CVE-2025-5444

Name of the Vulnerable Software and Affected Versions Linksys RE6500 versions 1.0.013.001 through 1.2.07.001 Linksys RE6250 versions 1.0.013.001 through 1.2.07.001 Linksys RE6300 versions 1.0.013.001 through 1.2.07.001 Linksys RE6350 versions 1.0.013.001 through 1.2.07.001 Linksys RE7000 versions 1.0.013.001 through 1.2.07.001 Linksys RE9000 versions 1.0.013.001 through 1.2.07.001

Description A critical issue has been found in the function RP UpgradeFWByBBS of the file /goform/RP UpgradeFWByBBS. The manipulation of the argument type/ch/ssidhex/security/extch/pwd/mode/ip/nm/gw leads to os command injection. This issue can be exploited remotely.

Recommendations For Linksys RE6500 version 1.2.07.001, consider disabling the RP UpgradeFWByBBS function until a patch is available. For Linksys RE6250 version 1.2.07.001, consider disabling the RP UpgradeFWByBBS function until a patch is available. For Linksys RE6300 version 1.2.07.001, consider disabling the RP UpgradeFWByBBS function until a patch is available. For Linksys RE6350 version 1.2.07.001, consider disabling the RP UpgradeFWByBBS function until a patch is available. For Linksys RE7000 version 1.2.07.001, consider disabling the RP UpgradeFWByBBS function until a patch is available. For Linksys RE9000 version 1.2.07.001, consider disabling the RP UpgradeFWByBBS function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.