CVE-2025-5447Command Injection in Linksys Re6250

CWE-77Command InjectionCWE-78OS Command Injection7 documents4 sources
Severity
5.3MEDIUMNVD
EPSS
9.2%
top 7.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
12
Linksys Re6250Linksys Re6300Linksys Re6350+9 more
Timeline
PublishedJun 2
Latest updateAug 28

Description

A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been declared as critical. This vulnerability affects the function ssid1MACFilter of the file /goform/ssid1MACFilter. The manipulation of the argument apselect_%d/newap_text_%d leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Packages12 packages

CVEListV5linksys/re62505 versions+4
CVEListV5linksys/re63005 versions+4
CVEListV5linksys/re63505 versions+4
CVEListV5linksys/re65005 versions+4
CVEListV5linksys/re70005 versions+4

🔴Vulnerability Details

2
CVEList
Linksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 ssid1MACFilter os command injection2025-06-02
GHSA
GHSA-jh65-hfwx-3vmm: A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 12025-06-02

🔍Detection Rules

4
Suricata
ET WEB_SPECIFIC_APPS Linksys ssid1MACFilter apselect_0 Parameter Command Injection Attempt (CVE-2025-5447)2025-08-28
Suricata
ET WEB_SPECIFIC_APPS Linksys upload_settings filename Parameter Command Injection Attempt2025-06-04
Suricata
ET WEB_SPECIFIC_APPS Linksys ssid1MACFilter apselect_ Parameter Command Injection Attempt (CVE-2025-5447)2025-06-03
Suricata
ET WEB_SPECIFIC_APPS Linksys addStaticRoute staticRoute_destType_setting Parameter Command Injection Attempt2025-06-03