Linksys E1700 setSysAdm stack-based overflow_CVE-2025-9526

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A vulnerability has been found in Linksys E1700 1.0.0.4.003. Affected by this issue is the function setSysAdm of the file /goform/setSysAdm. Such manipulation of the argument rm_port leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2025-9526

Source VulDB

Published Aug 27, 2025 at 12:32

Modified Aug 27, 2025 at 13:18

Affected Product

Vendor Linksys

Product E1700

Version 1.0.0.4.003

Affected Versions Linksys E1700 1.0.0.4.003

CWE Classification

CWE-121 CWE-119

References

{
    "lastseen": "",
    "description": "A vulnerability has been found in Linksys E1700 1.0.0.4.003. Affected by this issue is the function setSysAdm of the file /goform/setSysAdm. Such manipulation of the argument rm_port leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2025-08-27T12:32:09.160Z",
    "modified": "2025-08-27T13:18:53.170Z",
    "type": "cve",
    "title": "Linksys E1700 setSysAdm stack-based overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.321543\nhttps://vuldb.com/?ctiid.321543\nhttps://vuldb.com/?submit.634825\nhttps://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_59/59.md\nhttps://github.com/wudipjq/my_vuln/blob/main/Linksys2/vuln_59/59.md#poc\nhttps://www.linksys.com/",
    "id": "CVE-2025-9526",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "Linksys E1700 1.0.0.4.003",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "E1700",
    "version": "1.0.0.4.003",
    "vendor": "Linksys",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}