CVE-2020-35714
published 2020-12-26CVE-2020-35714: Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authenticated users to execute arbitrary commands via goform/systemCommand?command= in conjunction…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authenticated users to execute arbitrary commands via goform/systemCommand?command= in conjunction with the goform/pingstart program.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linksys | re6500_firmware | < 1.0.011.001 | 1.0.011.001 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vulncheck8.8HIGH