Buffer Overflow Vulnerability in Linksys E8450 Router
CVE-2024-57538

6.5MEDIUM

Key Information:

Vendor: Linksys
Status: E8450
Vendor: CVE Published:; 21 January 2025

Summary

The Linksys E8450 router has been identified to have a buffer overflow vulnerability. This issue occurs when the system improperly handles the 'anonymous_protect_status' field, which is copied to the stack without adequate length verification. This can potentially allow an attacker to execute arbitrary code on the affected device, posing severe risks to network security.

References

https://github.com/Wood1314/Linksys_E8450_vul/blob/main/1...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 21, 2025
Vulnerability Reserved
Jan 9, 2025