Linksys Wi-Fi Range Extenders OS Command Injection Vulnerability

Vulnerability

A critical OS command injection vulnerability has been identified in several Linksys Wi-Fi range extenders, specifically the RE6500, RE6250, RE6300, RE6350, RE7000, and RE9000 models, all running firmware versions 1.0.013.001, 1.0.04.001, 1.0.04.002, 1.1.05.003, and 1.2.07.001. The vulnerability arises in the 'wirelessAdvancedHidden' function of the '/goform/wirelessAdvancedHidden' file, where improper handling of the 'ExtChSelector', '24GSelector', and '5GSelector' arguments allows for remote command injection.

Impact

Exploitation of this vulnerability allows for OS command injection, where an attacker can execute arbitrary commands on the device's operating system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

4.9

remediation

0.0

relevance

0.1

threat

0.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

4.9

remediation

0.0

relevance

0.1

threat

0.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linksys Wi-Fi Range Extenders OS Command Injection Vulnerability

Vulnerability

Impact

Affected Products

Linksys RE6500

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating