CVE-2025-60696

Name of the Vulnerable Software and Affected Versions Linksys RE7000 routers versions FW v2.0.15 211230 1012

Description A stack-based buffer overflow issue exists in the makeRequest.cgi binary. The arplookup function parses lines from /proc/net/arp using sscanf("%16s ... %18s ..."), storing results into buffers v6 (12 bytes) and v7 (20 bytes). The format specifiers allow oversized input, leading to buffer overflows and potential stack corruption. Local attackers who can control the contents of /proc/net/arp may be able to cause a denial of service or potentially execute arbitrary code.

Recommendations Update to a newer firmware version that addresses this vulnerability. As a temporary workaround, restrict access to the /proc/net/arp file to minimize the risk of exploitation.