Unsanitized user input in the web interface for Linksys WiFi extender products (RE6400 and RE6300 up to and including 1.2.04.022) allows for remote command execution. An attacker can access system OS configurations and commands that are not intended for use beyond the web UI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linksys re6400_firmware |
||
linksys re6300_firmware |