CVE ID : CVE-2025-8817

Published : Aug. 10, 2025, 10:15 p.m. | 3 hours, 26 minutes ago

Description : A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function setLan of the file /goform/setLan. The manipulation of the argument lan2enabled leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-8818

Published : Aug. 10, 2025, 11:15 p.m. | 2 hours, 26 minutes ago

Description : A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setDFSSetting of the file /goform/setLan. The manipulation of the argument lanNetmask/lanIp leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-8819

Published : Aug. 10, 2025, 11:15 p.m. | 2 hours, 3 minutes ago

Description : A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This affects the function setWan of the file /goform/setWan. The manipulation of the argument staticIp leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-8820

Published : Aug. 11, 2025, 12:15 a.m. | 1 hour, 3 minutes ago

Description : A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This vulnerability affects the function wirelessBasic of the file /goform/wirelessBasic. The manipulation of the argument submit_SSID1 leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-8821

Published : Aug. 11, 2025, 1:15 a.m. | 26 minutes ago

Description : A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This issue affects the function RP_setBasic of the file /goform/RP_setBasic. The manipulation of the argument bssid leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-8822

Published : Aug. 11, 2025, 1:15 a.m. | 26 minutes ago

Description : A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected is the function algDisable of the file /goform/setOpMode. The manipulation of the argument opMode leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Zally is a quality assurance tool. It’s a linter for OpenAPI specifications. The post Zally – minimalistic, simple-to-use API linter…

The DistroWatch news feed is brought to you by TUXEDO COMPUTERS. This week in DistroWatch Weekly:
Review: Rhino Linux 2025.3
News: Fedora fights denial of service attack, NetBSD unveils new features for version 11, Ubuntu changes some command line tools for 25.10, AlmaLinux improves NVIDIA support
Questions and answers: Thoughts on malware in the Arch User Repository
Released last week: Debian 13,….

ctrld is a highly configurable DNS forwarding proxy. All DNS protocols are supported. The post ctrld – configurable DNS forwarding…

Firefox’s new AI tab groups is causing high CPU usage and battery drain. Find out why users are complaining and…

speccy makes sure your OpenAPI 3.0 specifications are more than just valid. It makes sure they’re useful. The post speccy…

GRUB is a boot loader software used in Linux systems. We pick 5 useful GUI tools to edit the bootloader…

Looking for Ubuntu icon alternatives? Hatter offers vibrant, well-designed icons that integrate cleanly with GNOME while respecting app’s brand identity.…

Koito is a modern, themeable ListenBrainz-compatible scrobbler for self-hosters who want control over their data and insights The post Koito…

Ogni settimana, il mondo del software libero e open source ci offre una moltitudine di aggiornamenti e nuove versioni di…

Save Desktop lets you save your current configuration (themes, icons, wallpapers, desktop environment settings, extensions.) with one click. The post…

Debian è una delle distribuzioni GNU/Linux più antiche e rispettate, nota per la sua stabilità, sicurezza e aderenza ai principi…

Send Laravel errors to Flare Source: Read More 

I’ve tested dozens of power stations, but here are my all-time favorites. Source: Latest news 

After being unveiled at CES, Lenovo delivered the ThinkBook Plus Gen 6 with an extendable 120Hz OLED display. I used…