제출 #584365: Linksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) OS Command Injection정보

제목Linksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) OS Command Injection
설명We found an command Injection vulnerability in Linksys router with firmware which was released recently, allows remote attackers to execute arbitrary OS commands from a crafted request.In wirelessAdvancedHidden function, ExtChSelector、24GSelector、5GSelector is directly passed by the attacker, so we can control the ExtChSelector、24GSelector、5GSelector to attack the OS.
원천⚠️ https://github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_6/6.md
사용자
 pjqwudi (UID 85106)
제출2025. 05. 25. AM 04:41 (1 년도 ago)
모더레이션2025. 06. 01. PM 07:06 (8 days later)
상태수락
VulDB 항목310782 [Linksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 까지 1.2.07.001 wirelessAdvancedHidden ExtChSelector/24GSelector/5GSelector 권한 상승]
포인트들19

이전개요다음

Want to stay up to date on a daily basis?

Enable the mail alert feature now!