Linksys E1700 setWan stack-based overflow_CVE-2025-9525

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A flaw has been found in Linksys E1700 1.0.0.4.003. Affected by this vulnerability is the function setWan of the file /goform/setWan. This manipulation of the argument DeviceName/lanIp causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2025-9525

Source VulDB

Published Aug 27, 2025 at 12:32

Modified Aug 27, 2025 at 13:20

Affected Product

Vendor Linksys

Product E1700

Version 1.0.0.4.003

Affected Versions Linksys E1700 1.0.0.4.003

CWE Classification

CWE-121 CWE-119

References

{
    "lastseen": "",
    "description": "A flaw has been found in Linksys E1700 1.0.0.4.003. Affected by this vulnerability is the function setWan of the file /goform/setWan. This manipulation of the argument DeviceName/lanIp causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2025-08-27T12:32:07.243Z",
    "modified": "2025-08-27T13:20:56.576Z",
    "type": "cve",
    "title": "Linksys E1700 setWan stack-based overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.321542\nhttps://vuldb.com/?ctiid.321542\nhttps://vuldb.com/?submit.634824\nhttps://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_58/58.md\nhttps://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_58/58.md#poc\nhttps://www.linksys.com/",
    "id": "CVE-2025-9525",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "Linksys E1700 1.0.0.4.003",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "E1700",
    "version": "1.0.0.4.003",
    "vendor": "Linksys",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}