Vulnerabilities > Linksys
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-09 | CVE-2022-43970 | Out-of-bounds Write vulnerability in Linksys Wrt54Gl Firmware 4.30.18.006 A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. | 7.2 |
| 2023-01-09 | CVE-2022-43971 | OS Command Injection vulnerability in Linksys Wumc710 Firmware 1.0.00/1.0.01/1.0.02 An arbitrary code exection vulnerability exists in Linksys WUMC710 Wireless-AC Universal Media Connector with firmware <= 1.0.02 (build3). | 7.2 |
| 2023-01-09 | CVE-2022-43972 | NULL Pointer Dereference vulnerability in Linksys Wrt54Gl Firmware 4.30.18.006 A null pointer dereference vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. | 7.5 |
| 2023-01-09 | CVE-2022-43973 | OS Command Injection vulnerability in Linksys Wrt54Gl Firmware 4.30.18.006 An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. | 7.2 |
| 2022-09-12 | CVE-2022-35572 | Missing Authentication for Critical Function vulnerability in Linksys E5350 Firmware 1.0.00.037 On Linksys E5350 WiFi Router with firmware version 1.0.00.037 and lower, (and potentially other vendors/devices due to code reuse), the /SysInfo.htm URI does not require a session ID. | 7.5 |
| 2022-08-28 | CVE-2022-38555 | Out-of-bounds Write vulnerability in Linksys E1200 Firmware 1.0.04 Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name. | 9.8 |
| 2022-08-24 | CVE-2022-38132 | OS Command Injection vulnerability in Linksys Mr8300 Firmware 1.0 Command injection vulnerability in Linksys MR8300 router while Registration to DDNS Service. | 8.8 |
| 2022-04-27 | CVE-2022-24372 | Link Following vulnerability in Linksys Mr9600 Firmware Linksys MR9600 devices before 2.0.5 allow attackers to read arbitrary files via a symbolic link to the root directory of a NAS SMB share. | 4.6 |
| 2020-12-26 | CVE-2020-35716 | Unspecified vulnerability in Linksys Re6500 Firmware Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attackers to cause a persistent denial of service (segmentation fault) via a long /goform/langSwitch langSelectionOnly parameter. | 7.5 |
| 2020-12-26 | CVE-2020-35715 | OS Command Injection vulnerability in Linksys Re6500 Firmware Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote authenticated users to execute arbitrary commands via shell metacharacters in a filename to the upload_settings.cgi page. | 8.8 |