Attackers Can Hijack TCP Sessions on Linksys E5600 Routers, Leading to Denial of Service
CVE-2023-30305

7.5HIGH

Key Information:

Vendor: Linksys
Vendor: CVE Published:; 28 May 2024

What is CVE-2023-30305?

A vulnerability has been identified in Linksys E5600 routers, allowing attackers to hijack TCP sessions. By exploiting this flaw, malicious actors can disrupt active connections and potentially launch denial-of-service attacks, creating significant disruptions for users. It’s essential for network administrators to assess the potential risks and apply appropriate security measures to mitigate exploitation risks.

References

https://www.ndss-symposium.org/ndss-paper/exploiting-sequ...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 28, 2024