CVE-2025-60690

CWE-121Stack-based Buffer Overflow3 documents3 sources
Severity
8.8HIGH
EPSS
0.4%
top 37.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Linksys E1200 Firmware
Timeline
PublishedNov 13

Description

A stack-based buffer overflow exists in the get_merge_ipaddr function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The function concatenates up to four user-supplied CGI parameters matching _0~3 into a fixed-size buffer (a2) without bounds checking. Remote attackers can exploit this vulnerability via specially crafted HTTP requests to execute arbitrary code or cause denial of service without authentication.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

NVDlinksys/e1200_firmware2.0.11.001

🔴Vulnerability Details

2
GHSA
GHSA-xrf6-v8xr-fg2f: A stack-based buffer overflow exists in the get_merge_ipaddr function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v22025-11-13
CVEList
CVE-2025-60690: A stack-based buffer overflow exists in the get_merge_ipaddr function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v22025-11-13
CVE-2025-60690 (HIGH CVSS 8.8) | A stack-based buffer overflow exist | cvebase.io