HIGH🇵🇱 Wersja polska

CVE-2025-60692

CVSS 8.4v3.1pub. 2025-11-13upd. 2026-07-05

A stack-based buffer overflow vulnerability exists in the libshared.so library of Cisco Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The functions get_mac_from_ip and get_ip_from_mac use sscanf with overly permissive "%100s" format specifiers to parse entries from /proc/net/arp into fixed-size buffers (v6: 50 bytes, v7 sub-arrays: 50 bytes). This allows local attackers controlling the contents of /proc/net/arp to overflow stack buffers, leading to memory corruption, denial of service, or potential arbitrary code execution.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Linksys E1200

    HW
    Linksys
    2
  • Linksys E1200 Firmware

    OS
    Linksys
    2.0.11.001
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEDoSMemory
CWE
References

Related vulnerabilities

CVE-2022-38555CRITICAL9.8ten sam produkt

Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name.

CVE-2025-60694HIGH7.5ten sam produkt

A stack-based buffer overflow exists in the validate_static_route function of the httpd binary on Linksys E120...

CVE-2025-60690HIGH8.8ten sam produkt

A stack-based buffer overflow exists in the get_merge_ipaddr function of the httpd binary on Linksys E1200 v2 ...

CVE-2025-60691HIGH8.8ten sam produkt

A stack-based buffer overflow exists in the httpd binary of Linksys E1200 v2 routers (Firmware E1200_v2.0.11.0...

CVE-2018-3953HIGH7.2ten sam produkt

Devices in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmwa...