Buffer Overflow Flaw in Linksys WAP610N Due to Length Verification Issue
CVE-2025-25522

7.3HIGH

Key Information:

Vendor: Linksys
Status: WAP610N
Vendor: CVE Published:; 11 February 2025

What is CVE-2025-25522?

A buffer overflow vulnerability exists in Linksys WAP610N v1.0.05.002 due to inadequate length verification during time setting operations. This flaw allows an attacker to exploit the device remotely, potentially gaining unauthorized control and impacting device functionality.

References

https://gist.github.com/XiaoCurry/f2365f4f6d18b2b4518ee20...

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 11, 2025
Vulnerability Reserved
Feb 7, 2025