CNNVD-202508-879 Information

CNNVD ID

CNNVD-202508-879

Related CVE

CVE-2025-8819

• CNNVD Published: 2025-08-10

Description (Chinese)

Linksys RE6250等都是美国Linksys公司的产品。Linksys RE6250是一款无线扩展器。Linksys RE6500是一款无线扩展器。Linksys EA6350是一款无线路由器。 Linksys多款产品存在安全漏洞，该漏洞源于文件/goform/setWan中函数setWan参数staticIp导致栈缓冲区溢出，可能导致远程攻击。以下产品及版本受到影响：RE6250、RE6300、RE6350、RE6500、RE7000和RE9000 20250801及之前版本。

Description (English)

Linksys RE6250 and others are products of the United States company Linksys. Linksys RE6250 is a wireless extension. Linksys RE6500 is a wireless extension. Linksys EA6350 is a wireless router. There is a safety loophole in Linksys ’ multiple products, which stems from the setWan parameter sticIp in the document/goform/setWan, which causes a breach of the barrage buffer, which may lead to a remote attack. The following products and versions were affected: RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 20250801 and earlier.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Linksys

Published

2025-08-10

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.319353 https://www.linksys.com/ https://vuldb.com/?submit.626683 https://github.com/wudipjq/my_vuln/blob/main/Linksys1/vuln_53/53.md#poc https://vuldb.com/?id.319353 https://access.redhat.com/security/cve/cve-2025-8819