CVE-2020-35716 — Linksys Re6500 Firmware vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

1.4%

top 19.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linksys Re6500 Firmware

Timeline

PublishedDec 26

Latest updateMay 24

Description

Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attackers to cause a persistent denial of service (segmentation fault) via a long /goform/langSwitch langSelectionOnly parameter.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

▶NVDlinksys/re6500_firmware< 1.0.012.001

🔴Vulnerability Details

GHSA

GHSA-5mr8-rv5h-p6vv: Belkin LINKSYS RE6500 devices before 1↗2022-05-24

▶

CVEList

CVE-2020-35716: Belkin LINKSYS RE6500 devices before 1↗2020-12-26

▶