Linksys Ea4500 Firmware vulnerabilities
3 known vulnerabilities affecting linksys/ea4500_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2LOW1
Vulnerabilities
Page 1 of 1
CVE-2017-10677HIGHCVSS 8.8≤ 2.0.362017-08-06
CVE-2017-10677 [HIGH] CWE-352 CVE-2017-10677: Cross-Site Request Forgery (CSRF) exists on Linksys EA4500 devices with Firmware Version before 2.1.
Cross-Site Request Forgery (CSRF) exists on Linksys EA4500 devices with Firmware Version before 2.1.41.164606, as demonstrated by a request to apply.cgi to disable SIP.
nvd
CVE-2014-8244HIGHCVSS 7.5≤ 2.0.14212.12014-11-01
CVE-2014-8244 [HIGH] CWE-200 CVE-2014-8244: Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900 devices allows remote attackers to obtain sensitive information or modify data
nvd
CVE-2014-8243LOWCVSS 3.3≤ 2.0.14212.12014-11-01
CVE-2014-8243 [LOW] CWE-310 CVE-2014-8243: Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900 devices allows remote attackers to obtain the administrator's MD5 password hash
nvd