Primary

Context

Linksys E5600 Command Injection Vulnerability in DynDNS Function

Vulnerability

A command injection vulnerability has been identified in the Linksys E5600 router, specifically in version 1.1.0.26. The issue arises within the runtime.ddnsStatus DynDNS function, where the password parameter is vulnerable to injection attacks.

Impact

Exploitation of this vulnerability allows for command injection, where an attacker can execute arbitrary commands on the device.

Reproduction

To reproduce this vulnerability, log into the router's web interface and authenticate using the admin username and a base64-encoded password. After authentication, send a POST request to the '/API/obj' endpoint with a payload that includes a command injection vector in the 'password' field of the 'DdnsP' object. The injected command will be executed on the router. Finally, send a POST request to the '/API/info' endpoint to verify the injection by checking the response for the output of the executed command.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.6

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.6

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linksys E5600 Command Injection Vulnerability in DynDNS Function

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating