CVE-2023-46012

CRITICAL

LINKSYS EA7500 3.0.1.207964 - Buffer Overflow

Title source: llm

Description

Buffer Overflow vulnerability LINKSYS EA7500 3.0.1.207964 allows a remote attacker to execute arbitrary code via an HTTP request to the IGD UPnP.

Exploits (1)

nomisec WORKING POC 6 stars
by dest-3 · poc
https://github.com/dest-3/CVE-2023-46012

References (1)

Scores

CVSS v3 9.8
EPSS 0.3455
EPSS Percentile 97.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-120
Status published
Products (1)
linksys/ea7500_firmware 3.0.1.207964
Published May 07, 2024
Tracked Since Feb 18, 2026