Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2004-0580

4 documents4 sources

Severity

5.0MEDIUM

EPSS

7.6%

top 8.11%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Linksys Befn2ps4 Linksys Befsr11 Linksys Befsr41 +6 more

Timeline

PublishedAug 6

Latest updateApr 29

Description

DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1.45.7, does not properly clear previously used buffer contents in a BOOTP reply packet, which allows remote attackers to obtain sensitive information.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages9 packages

▶NVDlinksys/befsr117 versions+6

▶NVDlinksys/befsr4113 versions+12

▶NVDlinksys/befsr812.42.7.1, 2.44+1

▶NVDlinksys/befsru317 versions+6

▶NVDlinksys/wrt54g1.42.3, 2.00.8+1

🔴Vulnerability Details

GHSA

GHSA-f36j-2388-wq8x: DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1↗2022-04-29

▶

CVEList

CVE-2004-0580: DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1↗2004-06-23

▶

💥Exploits & PoCs

Exploit-DB

Linksys - DHCP Information Disclosure↗2004-05-31

▶