CNNVD-202508-2886 Information

CNNVD ID

CNNVD-202508-2886

Related CVE

CVE-2025-9392

• CNNVD Published: 2025-08-24

Description (Chinese)

Linksys RE6250等都是美国Linksys公司的一款无线扩展器。 Linksys多款产品存在安全漏洞，该漏洞源于对/goform/qosClassifier文件中参数dir/sFromPort/sToPort/dFromPort/dToPort/protocol/layer7/dscp/remark_dscp的错误操作导致栈缓冲区溢出。以下产品及版本受到影响：Linksys RE6250、RE6300、RE6350、RE6500、RE7000和RE9000 1.0.013.001、1.0.04.001、1.0.04.002、1.1.05.003和1.2.07.001版本。

Description (English)

Linksys RE6250, etc., are a wireless extension of the United States company Linksys. There is a safety loophole in Linksys ’ multiple products, which stems from an error in the operation of dir/sFormPort/sToPort/dFormPort/dToPort/protocol/layer7/dscp/remark dscp on the parameters in the document /goform/qosClassifier. The following products and versions were affected: Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE90000 1.0.013.001, 1.0.04.001, 1.0.04.002, 1.1.05.003 and 1.2.07.001.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Linksys

Published

2025-08-24

Last Modified

2026-02-24

References

https://www.linksys.com/ https://vuldb.com/?submit.631537 https://vuldb.com/?id.321225 https://vuldb.com/?ctiid.321225 https://github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_32/32.md#poc https://nvd.nist.gov/vuln/detail/CVE-2025-9392