CVE-2025-29230
Severity CVSS v4.0:
Pending analysis
Type:
CWE-77
Command Injection
Publication date:
21/03/2025
Last modified:
01/04/2025
Description
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.emailReg function. The vulnerability can be triggered via the `pt["email"]` parameter.
Impact
Base Score 3.x
8.60
Severity 3.x
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:linksys:e5600_firmware:1.1.0.26:*:*:*:*:*:*:* | ||
cpe:2.3:h:linksys:e5600:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page