logo_clicknbuy.png

CVE-2025-9357 – “Linksys Wi-Fi Router Stack-Based Buffer Overflow Vulnerability”

The following table lists the changes that have been made to the
CVE-2025-9357 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution
of a vulnerability, and for identifying the most recent changes that may
impact the vulnerability’s severity, exploitability, or other characteristics.

  • New CVE Received
    by [email protected]

    Aug. 23, 2025

    Action Type Old Value New Value
    Added Description A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function langSwitchByBBS of the file /goform/langSwitchByBBS. The manipulation of the argument langSelectionOnly leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
    Added CVSS V4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
    Added CVSS V3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    Added CVSS V2 (AV:N/AC:L/Au:S/C:C/I:C/A:C)
    Added CWE CWE-119
    Added CWE CWE-121
    Added Reference https://github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_25/25.md
    Added Reference https://github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_25/25.md#poc
    Added Reference https://vuldb.com/?ctiid.321060
    Added Reference https://vuldb.com/?id.321060
    Added Reference https://vuldb.com/?submit.631529
    Added Reference https://www.linksys.com/
Share the Post:

Related Posts