CVE-2013-3307

HIGH EXPLOITED

Linksys E1000/E1200/E3200 - Command Injection

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2013-3307 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including m-1-k-3.

AI-analyzed exploit summary This exploit demonstrates OS command injection in Linksys X3000 firmware v1.0.03 via the `ping_ip` and `Add_Account_Password` parameters, allowing arbitrary command execution. It includes examples for achieving reverse shell access and highlights additional XSS vulnerabilities.

Description

Linksys E1000 devices through 2.1.02, E1200 devices before 2.0.05, and E3200 devices through 1.0.04 allow OS command injection via shell metacharacters in the apply.cgi ping_ip parameter on TCP port 52000.

Exploits (1)

exploitdb WORKING POC
by m-1-k-3 · textwebappshardware
https://www.exploit-db.com/exploits/26415

This exploit demonstrates OS command injection in Linksys X3000 firmware v1.0.03 via the `ping_ip` and `Add_Account_Password` parameters, allowing arbitrary command execution. It includes examples for achieving reverse shell access and highlights additional XSS vulnerabilities.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Linksys X3000 firmware v1.0.03 build 001
Auth required
Prerequisites: Authentication to the device · Network access to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 8.3
EPSS 0.0329
EPSS Percentile 87.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

VulnCheck KEV 2021-11-11
CWE
CWE-78
Status published
Products (3)
Linksys/E1000 < 2.1.02
Linksys/E1200 < 2.0.05
Linksys/E3200 < 1.0.04
Published Jul 11, 2025
Tracked Since Feb 18, 2026