Primary

Context

Linksys MR9600 and MX4200 OS Command Injection Vulnerability

Vulnerability

A command injection vulnerability has been identified in the Linksys MR9600 and MX4200 routers, specifically in the update functionality of a TLS-SRP connection used for device configuration within the mesh network. This vulnerability arises from inadequate sanitization of input, allowing OS commands to be injected and executed on the device.

Impact

Exploitation of this vulnerability allows for arbitrary OS command execution on the affected device.

Reproduction

The vulnerability can be reproduced by sending a crafted update request through a TLS-SRP connection to the device's service running on TCP port 6060. The injected command can be verified by observing the device's LED indicator, which will change color to indicate successful execution.

Added: Feb 25, 2026, 7:32 PM

Updated: Feb 25, 2026, 7:32 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

5.8

remediation

0.0

relevance

3.2

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

5.8

remediation

0.0

relevance

3.2

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linksys MR9600 and MX4200 OS Command Injection Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

Linksys MR9600

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating