| عنوان | Linksys E5600 1.1.0.26 CWE-327 Use of a Broken or Risky Cryptographic Algorithm |
|---|
| الوصف | During the firmware update process, improper integrity verification algorithm CRC(cyclic redundancy check) is used in function verify_gemtek_header() of file checkFw.sh to perform integrity verification on new firmware for update. This issue in the firmware update process of Linksys E5600(version V1.1.0.26) allows attackers to execute arbitrary code or cause denial of service via uploading a crafted firmware with the same CRC value as the new firmware for update. |
|---|
| المصدر | ⚠️ https://github.com/IOTRes/IOT_Firmware_Update/blob/main/Linksys/E5600.md |
|---|
| المستخدم | IOT_Res (UID 81722) |
|---|
| ارسال | 05/08/2025 04:47 AM (9 أشهر منذ) |
|---|
| الاعتدال | 19/08/2025 09:25 AM (14 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 320525 [Linksys E5600 1.1.0.26 Firmware checkFw.sh verify_gemtek_header تشفير ضعيف] |
|---|
| النقاط | 20 |
|---|