Lucene search
MitreVULNRICHMENT:CVE-2024-25852HistoryApr 11, 2024 - 12:00 a.m.
CVE-2024-25852
2024-04-1100:00:00
mitre
github.com
2
linksys re7000
command execution
access control
administrator rights
vulnerability
Linksys RE7000 v2.0.9, v2.0.11, and v2.0.15 have a command execution vulnerability in the “AccessControlList” parameter of the access control function point. An attacker can use the vulnerability to obtain device administrator rights.
ADP Affected
[
{
"cpes": [
"cpe:2.3:o:linksys:re7000_firmware:2.0.9:*:*:*:*:*:*:*"
],
"vendor": "linksys",
"product": "re7000_firmware",
"versions": [
{
"status": "affected",
"version": "2.0.9"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linksys:re7000_firmware:2.0.11:*:*:*:*:*:*:*"
],
"vendor": "linksys",
"product": "re7000_firmware",
"versions": [
{
"status": "affected",
"version": "2.0.11"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linksys:re7000_firmware:2.0.15:*:*:*:*:*:*:*"
],
"vendor": "linksys",
"product": "re7000_firmware",
"versions": [
{
"status": "affected",
"version": "2.0.15"
}
],
"defaultStatus": "unknown"
}
]Related
cve
cve
CVE-2024-25852
2024-04-11 21:15:07
cvelist
cvelist
CVE-2024-25852
2024-04-11 00:00:00
nvd
nvd
CVE-2024-25852
2024-04-11 21:15:07
nuclei
nuclei
Linksys RE7000 - Command Injection
2024-07-04 14:26:09
AI Score
7
Confidence
Low
SSVC
Exploitation
poc
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-25852