Linksys Re9000 vulnerabilities

57 known vulnerabilities affecting linksys/re9000.

Total CVEs
57
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH36MEDIUM21

Vulnerabilities

Page 3 of 3
CVE-2025-8830MEDIUMCVSS 5.3v202508012025-08-11
CVE-2025-8830 [MEDIUM] CWE-77 CVE-2025-8830: A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20 A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function sub_3517C of the file /goform/setWan. The manipulation of the argument Hostname leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be use
cvelistv5nvd
CVE-2025-8823MEDIUMCVSS 5.3v202508012025-08-11
CVE-2025-8823 [MEDIUM] CWE-77 CVE-2025-8823: A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 2025080 A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function setDeviceName of the file /goform/setDeviceName. The manipulation of the argument DeviceName leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the publi
cvelistv5nvd
CVE-2025-8827MEDIUMCVSS 5.3v202508012025-08-11
CVE-2025-8827 [MEDIUM] CWE-77 CVE-2025-8827: A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 2025080 A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This issue affects the function um_inspect_cross_band of the file /goform/RP_setBasicAuto. The manipulation of the argument staticGateway leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public
cvelistv5nvd
CVE-2025-8817HIGHCVSS 7.4v202508012025-08-10
CVE-2025-8817 [HIGH] CWE-119 CVE-2025-8817: A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20 A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function setLan of the file /goform/setLan. The manipulation of the argument lan2enabled leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public
cvelistv5nvd
CVE-2025-8816HIGHCVSS 7.4v202508012025-08-10
CVE-2025-8816 [HIGH] CWE-119 CVE-2025-8816: A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20 A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected is the function setOpMode of the file /goform/setOpMode. The manipulation of the argument ethConv leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be
cvelistv5nvd
CVE-2025-8819HIGHCVSS 7.4v202508012025-08-10
CVE-2025-8819 [HIGH] CWE-119 CVE-2025-8819: A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 2025080 A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This affects the function setWan of the file /goform/setWan. The manipulation of the argument staticIp leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. T
cvelistv5nvd
CVE-2025-8818MEDIUMCVSS 5.3v202508012025-08-10
CVE-2025-8818 [MEDIUM] CWE-77 CVE-2025-8818: A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20 A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setDFSSetting of the file /goform/setLan. The manipulation of the argument lanNetmask/lanIp leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public an
cvelistv5nvd
CVE-2025-5444MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5444 [MEDIUM] CWE-77 CVE-2025-5444: A vulnerability has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013. A vulnerability has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001 and classified as critical. Affected by this vulnerability is the function RP_UpgradeFWByBBS of the file /goform/RP_UpgradeFWByBBS. The manipulation of the argument type/ch/ssidhex/security/extch/pwd/mode/i
cvelistv5nvd
CVE-2025-5442MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5442 [MEDIUM] CWE-77 CVE-2025-5442: A vulnerability, which was classified as critical, has been found in Linksys RE6500, RE6250, RE6300, A vulnerability, which was classified as critical, has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This issue affects the function RP_pingGatewayByBBS of the file /goform/RP_pingGatewayByBBS. The manipulation of the argument ip/nm/gw leads to os command injection. The
cvelistv5nvd
CVE-2025-5447MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5447 [MEDIUM] CWE-77 CVE-2025-5447: A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1 A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been declared as critical. This vulnerability affects the function ssid1MACFilter of the file /goform/ssid1MACFilter. The manipulation of the argument apselect_%d/newap_text_%d leads to os command inject
cvelistv5nvd
CVE-2025-5441MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5441 [MEDIUM] CWE-77 CVE-2025-5441: A vulnerability classified as critical was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 a A vulnerability classified as critical was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function setDeviceURL of the file /goform/setDeviceURL. The manipulation of the argument DeviceURL leads to os command injection. The attack can be initiate
cvelistv5nvd
CVE-2025-5438MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5438 [MEDIUM] CWE-74 CVE-2025-5438: A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1 A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been declared as critical. Affected by this vulnerability is the function WPS of the file /goform/WPS. The manipulation of the argument PIN leads to command injection. The attack can be launched remotely
cvelistv5nvd
CVE-2025-5443MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5443 [MEDIUM] CWE-77 CVE-2025-5443: A vulnerability, which was classified as critical, was found in Linksys RE6500, RE6250, RE6300, RE63 A vulnerability, which was classified as critical, was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected is the function wirelessAdvancedHidden of the file /goform/wirelessAdvancedHidden. The manipulation of the argument ExtChSelector/24GSelector/5GSelector leads to os c
cvelistv5nvd
CVE-2025-5445MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5445 [MEDIUM] CWE-77 CVE-2025-5445: A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1 A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001 and classified as critical. Affected by this issue is the function RP_checkFWByBBS of the file /goform/RP_checkFWByBBS. The manipulation of the argument type/ch/ssidhex/security/extch/pwd/mode/ip/nm/gw leads to
cvelistv5nvd
CVE-2025-5439MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5439 [MEDIUM] CWE-77 CVE-2025-5439: A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1 A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been rated as critical. Affected by this issue is the function verifyFacebookLike of the file /goform/verifyFacebookLike. The manipulation of the argument uid/accessToken leads to os command injection. T
cvelistv5nvd
CVE-2025-5440MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5440 [MEDIUM] CWE-77 CVE-2025-5440: A vulnerability classified as critical has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7 A vulnerability classified as critical has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function NTP of the file /goform/NTP. The manipulation of the argument manual_year_select/manual_month_select/manual_day_select/manual_hour_select/manual_min_select/
cvelistv5nvd
CVE-2025-5446MEDIUMCVSS 5.3v1.0.013.001v1.0.04.001+3 more2025-06-02
CVE-2025-5446 [MEDIUM] CWE-77 CVE-2025-5446: A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1 A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been classified as critical. This affects the function RP_checkCredentialsByBBS of the file /goform/RP_checkCredentialsByBBS. The manipulation of the argument pwd leads to os command injection. It is pos
cvelistv5nvd
← Previous3 / 3