CVE-2014-8244

Currently unrated 🤨

Key Information

Vendor: Linksys
Status: Ea3500 Firmware; Ea3500
Vendor: CVE Published:; 1 November 2014

Badges

👾 Exploit Exists🟡 Public PoC

Summary

Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900 devices allows remote attackers to obtain sensitive information or modify data via a JNAP action in a JNAP/ HTTP request.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

LinksysLeaks
Created by JollyJumbuckk

References

http://www.kb.cert.org/vuls/id/447516

third-party-advisoryx_refsource_CERT-VN

EPSS Score

1% chance of being exploited in the next 30 days.

Timeline

🟡
Public PoC available
Jan 24, 2020
👾
Exploit known to exist
Jan 24, 2020
Vulnerability published
Nov 1, 2014
Vulnerability Reserved
Oct 12, 2014

Collectors

NVD DatabaseMitre Database1 Proof of Concept(s)