CVE-2024-25852

Published: Apr 11, 2024

Modified: Aug 14, 2024

PUBLISHED

Description

Linksys RE7000 v2.0.9, v2.0.11, and v2.0.15 have a command execution vulnerability in the "AccessControlList" parameter of the access control function point. An attacker can use the vulnerability to obtain device administrator rights.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://immense-mirror-b42.notion.site/Linksys-RE7000-command-injection-vulnerability-c1a47abf5e8d4dd0934d20d77da930bd

https://github.com/ZackSecurity/VulnerReport/blob/cve/Linksys/1.md

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-25852

Description

Affected Products

References