CVE-2025-9482

Name of the Vulnerable Software and Affected Versions: Linksys RE6250 version 1.0.013.001 Linksys RE6300 version 1.0.013.001 Linksys RE6350 version 1.0.013.001 Linksys RE6500 version 1.0.013.001 Linksys RE7000 version 1.0.013.001 Linksys RE9000 version 1.0.013.001 Linksys RE6250 version 1.0.04.001 Linksys RE6300 version 1.0.04.001 Linksys RE6350 version 1.0.04.001 Linksys RE6500 version 1.0.04.001 Linksys RE7000 version 1.0.04.001 Linksys RE9000 version 1.0.04.001 Linksys RE6250 version 1.0.04.002 Linksys RE6300 version 1.0.04.002 Linksys RE6350 version 1.0.04.002 Linksys RE6500 version 1.0.04.002 Linksys RE7000 version 1.0.04.002 Linksys RE9000 version 1.0.04.002 Linksys RE6250 version 1.1.05.003 Linksys RE6300 version 1.1.05.003 Linksys RE6350 version 1.1.05.003 Linksys RE6500 version 1.1.05.003 Linksys RE7000 version 1.1.05.003 Linksys RE9000 version 1.1.05.003 Linksys RE6250 version 1.2.07.001 Linksys RE6300 version 1.2.07.001 Linksys RE6350 version 1.2.07.001 Linksys RE6500 version 1.2.07.001 Linksys RE7000 version 1.2.07.001 Linksys RE9000 version 1.2.07.001

Description: A stack-based buffer overflow exists in the portRangeForwardAdd function within the /goform/portRangeForwardAdd file. Manipulation of the ruleName, schedule, inboundFilter, TCPPorts, and UDPPorts arguments can trigger the overflow. This issue is remotely exploitable. The exploit is publicly available.

Recommendations: Linksys RE6250 version 1.0.013.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6300 version 1.0.013.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6350 version 1.0.013.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6500 version 1.0.013.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE7000 version 1.0.013.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE9000 version 1.0.013.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6250 version 1.0.04.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6300 version 1.0.04.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6350 version 1.0.04.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6500 version 1.0.04.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE7000 version 1.0.04.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE9000 version 1.0.04.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6250 version 1.0.04.002: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6300 version 1.0.04.002: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6350 version 1.0.04.002: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6500 version 1.0.04.002: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE7000 version 1.0.04.002: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE9000 version 1.0.04.002: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6250 version 1.1.05.003: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6300 version 1.1.05.003: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6350 version 1.1.05.003: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6500 version 1.1.05.003: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE7000 version 1.1.05.003: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE9000 version 1.1.05.003: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6250 version 1.2.07.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6300 version 1.2.07.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6350 version 1.2.07.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE6500 version 1.2.07.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE7000 version 1.2.07.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys RE9000 version 1.2.07.001: At the moment, there is no information about a newer version that contains a fix for this vulnerability.