Description
A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been classified as critical. This affects the function RP_checkCredentialsByBBS of the file /goform/RP_checkCredentialsByBBS. The manipulation of the argument pwd leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
INFO
Published Date :
2025-06-02T13:00:17.423Z
Last Modified :
2025-06-02T13:40:07.771Z
Source :
VulDB
AFFECTED PRODUCTS
The following products are affected by CVE-2025-5446 vulnerability.
| Vendors | Products |
|---|---|
| Linksys |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2025-5446.
