Buffer Overflow Vulnerability in Linksys E8450 Router by Linksys
CVE-2024-57540

6.5MEDIUM

Key Information:

Vendor: Linksys
Status: E8450
Vendor: CVE Published:; 21 January 2025

What is CVE-2024-57540?

The Linksys E8450 router, specifically version v1.2.00.360516, contains a vulnerability where a buffer overflow occurs during the parsing of the action field. This vulnerability allows data to be copied to the stack without the necessary length verification, potentially leading to unexpected behavior or exploitation. Users are advised to apply mitigations or updates to safeguard against any exploitation risks.

References

https://github.com/Wood1314/Linksys_E8450_vul/blob/main/2...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 21, 2025
Vulnerability Reserved
Jan 9, 2025