Re6500 Firmware Security Vulnerabilities and Issues — Re6500 Firmware CVE List

Lucene search

LinksysRe6500 Firmware

15 matches found

CVE•added 2020/12/26 1:15 a.m.•72 views

CVE-2020-35714

Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authenticated users to execute arbitrary commands via goform/systemCommand?command= in conjunction with the goform/pingstart program.

8.8CVSS8.7AI score0.03819EPSS

Web

CVE•added 2025/06/02 10:15 a.m.•54 views

CVE-2025-5440

A vulnerability classified as critical has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function NTP of the file /goform/NTP. The manipulation of the argument manual_year_select/manual_month_select/...

8.8CVSS7.6AI score0.00389EPSS

Web

CVE•added 2025/06/02 10:15 a.m.•44 views

CVE-2025-5439

A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been rated as critical. Affected by this issue is the function verifyFacebookLike of the file /goform/verifyFacebookLike. The manipulation of the ar...

8.8CVSS6.8AI score0.00389EPSS

Web

CVE•added 2025/06/02 9:15 a.m.•41 views

CVE-2025-5438

A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been declared as critical. Affected by this vulnerability is the function WPS of the file /goform/WPS. The manipulation of the argument PIN leads to...

8.8CVSS6.9AI score0.00534EPSS

Web

CVE•added 2025/08/11 1:15 a.m.•11 views

CVE-2025-8821

A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This issue affects the function RP_setBasic of the file /goform/RP_setBasic. The manipulation of the argument bssid leads to os command injection. The attack may be initiated remotely. The ex...

8.8CVSS7.6AI score0.00505EPSS

Web

CVE•added 2025/08/11 3:15 a.m.•11 views

CVE-2025-8825

A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This affects the function RP_setBasicAuto of the file /goform/RP_setBasicAuto. The manipulation of the argument staticIp/staticNetmask leads to os command injection. It is possible to initiat...

8.8CVSS7.5AI score0.00505EPSS

Web

CVE•added 2025/08/10 11:15 p.m.•10 views

CVE-2025-8818

A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setDFSSetting of the file /goform/setLan. The manipulation of the argument lanNetmask/lanIp leads to os command injection. The attack may be launched re...

8.8CVSS7.5AI score0.00505EPSS

Web

CVE•added 2025/08/11 2:15 a.m.•10 views

CVE-2025-8823

A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function setDeviceName of the file /goform/setDeviceName. The manipulation of the argument DeviceName leads to os command injection. The attack can be launche...

8.8CVSS7.5AI score0.00505EPSS

Web

CVE•added 2025/08/11 4:15 a.m.•10 views

CVE-2025-8827

A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This issue affects the function um_inspect_cross_band of the file /goform/RP_setBasicAuto. The manipulation of the argument staticGateway leads to os command injection. The attack may be initiated...

8.8CVSS7.6AI score0.00505EPSS

Web

CVE•added 2025/08/11 4:15 a.m.•10 views

CVE-2025-8828

A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected is the function ipv6cmd of the file /goform/setIpv6. The manipulation of the argument Ipv6PriDns/Ipv6SecDns/Ipv6StaticGateway/LanIpv6Addr/LanPrefixLen/pppoeUser/pppoePass/pppoeIdleTi...

8.8CVSS7.5AI score0.00505EPSS

Web

CVE•added 2025/08/11 4:15 a.m.•10 views

CVE-2025-8829

A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function um_red of the file /goform/RP_setBasicAuto. The manipulation of the argument hname leads to os command injection. The attack can be launched rem...

8.8CVSS7.5AI score0.00505EPSS

Web

CVE•added 2025/08/11 5:15 a.m.•10 views

CVE-2025-8830

A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function sub_3517C of the file /goform/setWan. The manipulation of the argument Hostname leads to os command injection. The attack may be launched remotely. The ...

8.8CVSS7.5AI score0.00505EPSS

Web

CVE•added 2025/08/20 8:15 p.m.•6 views

CVE-2025-9244

A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function addStaticRoute of the file /goform/addStaticRoute. Such manipulation of the argument staticRoute_I...

8.8CVSS6.8AI score0.00476EPSS

Web

CVE•added 2025/08/28 6:15 p.m.•6 views

CVE-2025-9575

A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This issue affects the function cgiMain of the file /cgi-bin/upload.cgi. Executing manipulation of the argument filename can lead to os command inject...

8.8CVSS6.4AI score0.00407EPSS

Web

CVE•added 2025/08/23 2:15 p.m.•5 views

CVE-2025-9362

A flaw has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. The impacted element is the function urlFilterManageRule of the file /goform/urlFilterManageRule. Executing manipulation of the argument urlFilterRuleName/sche...

8.8CVSS6.5AI score0.00053EPSS

Web