CNNVD-202506-3022 Information

CNNVD ID

CNNVD-202506-3022

Related CVE

CVE-2025-34037

• CNNVD Published: 2025-06-24

Description (Chinese)

Linksys E-Series是美国Linksys公司的一款路由器。 Linksys E-Series存在安全漏洞，该漏洞源于tmUnblock.cgi和hndUnblock.cgi端点中ttcp_ip参数未清理导致OS命令注入攻击。

Description (English)

Linksys E-Series is a router for the United States company Linksys. Linksys E-Series had a security loophole, which originated from the failure to clear ttcp ip parameters at the tmUnblock.cgi and hndUnblock.cgi endpoints, resulting in an OS command injection attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linksys

Published

2025-06-24

Last Modified

2026-02-24

References

https://vulncheck.com/advisories/linksys-routers-command-injection https://www.exploit-db.com/exploits/31683 https://isc.sans.edu/diary/17633 https://access.redhat.com/security/cve/cve-2025-34037