← Back

Linksys

linksys

223 CVEs • 143 products

Products (143)

Click to collapse
Toggle
Re6500 Firmware
re6500_firmware
60 CVEs
Re7000 Firmware
re7000_firmware
59 CVEs
Re6300 Firmware
re6300_firmware
58 CVEs
Re9000 Firmware
re9000_firmware
57 CVEs
Re6250 Firmware
re6250_firmware
57 CVEs
Re6350 Firmware
re6350_firmware
57 CVEs
E5600 Firmware
e5600_firmware
18 CVEs
Wrt54g
wrt54g
16 CVEs
E8450 Firmware
e8450_firmware
11 CVEs
E1200 Firmware
e1200_firmware
10 CVEs
E7350 Firmware
e7350_firmware
8 CVEs
Wrt54gl Firmware
wrt54gl_firmware
7 CVEs
Befsr41
befsr41
6 CVEs
Ea6500 Firmware
ea6500_firmware
6 CVEs
E1700 Firmware
e1700_firmware
6 CVEs
Ea6500
ea6500
5 CVEs
E2500 Firmware
e2500_firmware
5 CVEs
Wap11
wap11
4 CVEs
Befvp41
befvp41
4 CVEs
Wag54gs
wag54gs
4 CVEs
Mr9600 Firmware
mr9600_firmware
4 CVEs
Befn2ps4
befn2ps4
3 CVEs
Befsr81
befsr81
3 CVEs
Befsr11
befsr11
3 CVEs
Befsru31
befsru31
3 CVEs
Befsx41
befsx41
3 CVEs
Befw11s4
befw11s4
3 CVEs
Wrt54gs
wrt54gs
3 CVEs
Ea4500 Firmware
ea4500_firmware
3 CVEs
E2000 Firmware
e2000_firmware
3 CVEs
Wet11
wet11
2 CVEs
Wap55ag
wap55ag
2 CVEs
Wvc11b
wvc11b
2 CVEs
Wrt54g V5
wrt54g_v5
2 CVEs
Spa941
spa941
2 CVEs
Wrt54gl
wrt54gl
2 CVEs
Wap400n
wap400n
2 CVEs
Ea4500
ea4500
2 CVEs
Ea6400 Firmware
ea6400_firmware
2 CVEs
Ea6400
ea6400
2 CVEs
E4200v2 Firmware
e4200v2_firmware
2 CVEs
E4200v2
e4200v2
2 CVEs
Ea6300 Firmware
ea6300_firmware
2 CVEs
Ea6300
ea6300
2 CVEs
Ea6900 Firmware
ea6900_firmware
2 CVEs
Ea6900
ea6900
2 CVEs
Ea2700 Firmware
ea2700_firmware
2 CVEs
Ea2700
ea2700
2 CVEs
Ea3500 Firmware
ea3500_firmware
2 CVEs
Ea3500
ea3500
2 CVEs
Ea6200 Firmware
ea6200_firmware
2 CVEs
Ea6200
ea6200
2 CVEs
Ea6700 Firmware
ea6700_firmware
2 CVEs
Ea6700
ea6700
2 CVEs
Wrt1900acs Firmware
wrt1900acs_firmware
2 CVEs
Wrt54g Firmware
wrt54g_firmware
2 CVEs
Fgw3000 Ah Firmware
fgw3000-ah_firmware
2 CVEs
Fgw3000 Hk Firmware
fgw3000-hk_firmware
2 CVEs
Hpro200
hpro200
1 CVE
Befcmu10
befcmu10
1 CVE
Befsr41w
befsr41w
1 CVE
Rv082
rv082
1 CVE
Befsr41 V3
befsr41_v3
1 CVE
Psus4 Printserver
psus4_printserver
1 CVE
Befw11s4 V3
befw11s4_v3
1 CVE
Befw11s4 V4
befw11s4_v4
1 CVE
Rt31p2
rt31p2
1 CVE
Wpc300n Wireless N Notebook Adapter Driver
wpc300n_wireless-n_notebook_adapter_driver
1 CVE
Wip 330 Wireless G Ip Phone
wip_330_wireless-g_ip_phone
1 CVE
Spa921
spa921
1 CVE
Wag200g
wag200g
1 CVE
Wrt54gc
wrt54gc
1 CVE
Wrt300n
wrt300n
1 CVE
Spa 2102 Phone Adapter
spa-2102_phone_adapter
1 CVE
Wrt350n
wrt350n
1 CVE
Wap4400n
wap4400n
1 CVE
Wap54g Firmware
wap54g_firmware
1 CVE
Wap54gv3
wap54gv3
1 CVE
Wrt54gx
wrt54gx
1 CVE
Wvbr0 Firmware
wvbr0_firmware
1 CVE
Velop Firmware
velop_firmware
1 CVE
Wag54g2 Firmware
wag54g2_firmware
1 CVE
Re6400 Firmware
re6400_firmware
1 CVE
Velop Whw0303 Firmware
velop_whw0303_firmware
1 CVE
Velop Whw0302 Firmware
velop_whw0302_firmware
1 CVE
Velop Whw0301 Firmware
velop_whw0301_firmware
1 CVE
Wrt310n Firmware
wrt310n_firmware
1 CVE
Spa2102 Firmware
spa2102_firmware
1 CVE
Mr8300 Firmware
mr8300_firmware
1 CVE
E5350 Firmware
e5350_firmware
1 CVE
Wumc710 Firmware
wumc710_firmware
1 CVE
E1000 Firmware
e1000_firmware
1 CVE
Ea7500 Firmware
ea7500_firmware
1 CVE
Velop Whw0101 Firmware
velop_whw0101_firmware
1 CVE
Mx6200 Firmware
mx6200_firmware
1 CVE
Mbe7000 Firmware
mbe7000_firmware
1 CVE
E1500 Firmware
e1500_firmware
1 CVE
E3000 Firmware
e3000_firmware
1 CVE
Wap610n Firmware
wap610n_firmware
1 CVE
Ea6350 Firmware
ea6350_firmware
1 CVE

CVEs (223)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-8243
1Linksys
20E4200v2
E4200v2 FirmwareEa2700+17 more
May 6, 2026
Nov 1, 2014
N/A· v4
N/A· v3
3.3 LOW· v2
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and...Show more
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300, EA6400, EA6500, and EA6700 devices; and before 1.1.42 build 161129 on EA6900 devices allows remote attackers to obtain the administrator's MD5 password hash via a direct request for the /.htpasswd URI.Show less
CVE-2013-3066
1Linksys
2Ea6500
Ea6500 Firmware
May 6, 2026
Sep 29, 2014
N/A· v4
N/A· v3
7.1 HIGH· v2
Linksys EA6500 with firmware 1.1.28.147876 does not properly restrict access, which allows remote attackers to obtain sensitive information (clients and router configuration) via a request to /JNAP/.
CVE-2013-3065
1Linksys
2Ea6500
Ea6500 Firmware
May 6, 2026
Sep 29, 2014
N/A· v4
N/A· v3
3.5 LOW· v2
Cross-site scripting (XSS) vulnerability in the Parental Controls section in Linksys EA6500 with firmware 1.1.28.147876 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to the...Show more
Cross-site scripting (XSS) vulnerability in the Parental Controls section in Linksys EA6500 with firmware 1.1.28.147876 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to the Blocked Specific Sites section.Show less
CVE-2013-3064
1Linksys
2Ea6500
Ea6500 Firmware
May 6, 2026
Sep 29, 2014
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Open redirect vulnerability in ui/dynamic/unsecured.html in Linksys EA6500 with firmware 1.1.28.147876 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the target...Show more
Open redirect vulnerability in ui/dynamic/unsecured.html in Linksys EA6500 with firmware 1.1.28.147876 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the target parameter.Show less
CVE-2011-4500
2Cisco
Linksys
2Linksys Wrt54gx Router Firmware
Wrt54gx
Apr 29, 2026
Nov 22, 2011
N/A· v4
N/A· v3
7.5 HIGH· v2
The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOAP server to listen on the WAN port, which allows remote attackers to administer the firewall via SOA...Show more
The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOAP server to listen on the WAN port, which allows remote attackers to administer the firewall via SOAP requests.Show less
CVE-2011-4499
2Cisco
Linksys
4Linksys Wrt54g Router Firmware
Linksys Wrt54gs Router FirmwareWrt54g+1 more
Apr 29, 2026
Nov 22, 2011
N/A· v4
N/A· v3
7.5 HIGH· v2
The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote...Show more
The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.Show less
CVE-2010-2261
1Linksys
1Wap54gv3
Apr 29, 2026
Jun 10, 2010
N/A· v4
N/A· v3
10.0 HIGH· v2
Linksys WAP54Gv3 firmware 3.04.03 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) data2 and (2) data3 parameters to (a) Debug_command_page.asp and (b) debug.cgi.
CVE-2010-1573
1Linksys
1Wap54g Firmware
Apr 29, 2026
Jun 10, 2010
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
Linksys WAP54Gv3 firmware 3.04.03 and earlier uses a hard-coded username (Gemtek) and password (gemtekswd) for a debug interface for certain web pages, which allows remote attackers to execute arbitrary commands via the...Show more
Linksys WAP54Gv3 firmware 3.04.03 and earlier uses a hard-coded username (Gemtek) and password (gemtekswd) for a debug interface for certain web pages, which allows remote attackers to execute arbitrary commands via the (1) data1, (2) data2, or (3) data3 parameters to (a) Debug_command_page.asp and (b) debug.cgi.Show less
CVE-2007-5475
2Linksys
Marvell
288w8361p Bem Chipset
Wap4400n
Apr 23, 2026
Nov 12, 2009
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Multiple buffer overflows in the Marvell wireless driver, as used in Linksys WAP4400N Wi-Fi access point with firmware 1.2.17 on the Marvell 88W8361P-BEM1 chipset, and other products, allow remote 802.11-authenticated us...Show more
Multiple buffer overflows in the Marvell wireless driver, as used in Linksys WAP4400N Wi-Fi access point with firmware 1.2.17 on the Marvell 88W8361P-BEM1 chipset, and other products, allow remote 802.11-authenticated users to cause a denial of service (wireless access point crash) and possibly execute arbitrary code via an association request with long (1) rates, (2) extended rates, and unspecified other information elements.Show less
CVE-2009-3341
1Linksys
1Wrt54gl
Apr 23, 2026
Sep 24, 2009
N/A· v4
N/A· v3
10.0 HIGH· v2
Buffer overflow on the Linksys WRT54GL wireless router allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.10 through 8.11. NOT...Show more
Buffer overflow on the Linksys WRT54GL wireless router allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.10 through 8.11. NOTE: as of 20090917, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.Show less
CVE-2008-4594
1Linksys
1Wap400n
Apr 23, 2026
Oct 17, 2008
N/A· v4
N/A· v3
10.0 HIGH· v2
Unspecified vulnerability in the SNMPv3 component in Linksys WAP4400N firmware 1.2.14 on the Marvell Semiconductor 88W8361P-BEM1 chipset has unknown impact and attack vectors, probably remote.
CVE-2008-4441
1Linksys
1Wap400n
Apr 23, 2026
Oct 14, 2008
N/A· v4
N/A· v3
7.1 HIGH· v2
The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote att...Show more
The Marvell driver for the Linksys WAP4400N Wi-Fi access point with firmware 1.2.14 on the Marvell 88W8361P-BEM1 chipset, when WEP mode is enabled, does not properly parse malformed 802.11 frames, which allows remote attackers to cause a denial of service (reboot or hang-up) via a malformed association request containing the WEP flag, as demonstrated by a request that is too short, a different vulnerability than CVE-2008-1144 and CVE-2008-1197.Show less
CVE-2007-5474
2Atheros
Linksys
2Ar5416 Ac1e Chipset
Wrt350n
Apr 23, 2026
Sep 5, 2008
N/A· v4
N/A· v3
6.3 MEDIUM· v2
The driver for the Linksys WRT350N Wi-Fi access point with firmware 2.00.17 on the Atheros AR5416-AC1E chipset does not properly parse the Atheros vendor-specific information element in an association request, which allo...Show more
The driver for the Linksys WRT350N Wi-Fi access point with firmware 2.00.17 on the Atheros AR5416-AC1E chipset does not properly parse the Atheros vendor-specific information element in an association request, which allows remote authenticated users to cause a denial of service (device reboot or hang) or possibly execute arbitrary code via an Atheros information element with an invalid length, as demonstrated by an element that is too long.Show less
CVE-2008-2092
1Linksys
1Spa 2102 Phone Adapter
Apr 23, 2026
May 6, 2008
N/A· v4
N/A· v3
7.8 HIGH· v2
Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service (crash) via a long ping packet ("ping of death"). NOTE: the severity of this issue has been disputed since there are limited attac...Show more
Linksys SPA-2102 Phone Adapter 3.3.6 allows remote attackers to cause a denial of service (crash) via a long ping packet ("ping of death"). NOTE: the severity of this issue has been disputed since there are limited attack scenarios.Show less
CVE-2007-6709
1Linksys
1Wag54gs
Apr 23, 2026
Mar 13, 2008
N/A· v4
N/A· v3
7.5 HIGH· v2
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access.
CVE-2007-6708
1Linksys
1Wag54gs
Apr 23, 2026
Mar 13, 2008
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site request forgery (CSRF) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitra...Show more
Multiple cross-site request forgery (CSRF) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by (1) a Restore Factory Defaults action using the mtenRestore parameter to setup.cgi and (2) creation of a user account using the sysname parameter to setup.cgi.Show less
CVE-2007-6707
1Linksys
1Wag54gs
Apr 23, 2026
Mar 13, 2008
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vec...Show more
Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574.Show less
CVE-2008-1268
1Linksys
1Wrt54g
Apr 23, 2026
Mar 10, 2008
N/A· v4
N/A· v3
10.0 HIGH· v2
The FTP server on the Linksys WRT54G 7 router with 7.00.1 firmware does not verify authentication credentials, which allows remote attackers to establish an FTP session by sending an arbitrary username and password.
CVE-2008-1265
1Linksys
1Wrt54g
Apr 23, 2026
Mar 10, 2008
N/A· v4
N/A· v3
7.8 HIGH· v2
The Linksys WRT54G router allows remote attackers to cause a denial of service (device restart) via a long username and password to the FTP interface.
CVE-2008-1264
1Linksys
1Wrt54g
Apr 23, 2026
Mar 10, 2008
N/A· v4
N/A· v3
7.5 HIGH· v2
The Linksys WRT54G router has "admin" as its default FTP password, which allows remote attackers to access sensitive files including nvram.cfg, a file that lists all HTML documents, and an ELF executable file.