Arbitrary Command Execution Vulnerability in Belkin LINKSYS RE6500 Devices
CVE-2020-35715

8.8HIGH

Key Information:

Vendor

Linksys
Status
Re6500 Firmware
Vendor
CVE Published:
26 December 2020

What is CVE-2020-35715?

The Belkin LINKSYS RE6500 devices prior to firmware version 1.0.012.001 are susceptible to an arbitrary command execution vulnerability. Remote authenticated users can exploit this flaw by injecting shell metacharacters into filenames on the upload_settings.cgi page, which could lead to the execution of unintended commands on the vulnerable device.

References

https://resolverblog.blogspot.com/2020/07/linksys-re6500-...
x_refsource_MISC
https://downloads.linksys.com/support/assets/releasenotes...
x_refsource_MISC
https://bugcrowd.com/disclosures/72d7246b-f77f-4f7f-9bd1-...
x_refsource_MISC

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.