CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-22543

An issue was discovered in Linksys Router E1700 1.0.04 (build 3), allows authenticated attackers to escalate privileges via a crafted GET request to the /goform/* URI or via the ExportSettings function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.8%

CVSS Severity

CVSS v3 Score 6.1

References

https://mat4mee.notion.site/Leaked-SessionID-can-lead-to-authentication-bypass-on-the-Linksys-Router-E1700-f56f9c4b15e7443fa237bd1b101a18d2
https://mat4mee.notion.site/Leaked-SessionID-can-lead-to-authentication-bypass-on-the-Linksys-Router-E1700-f56f9c4b15e7443fa237bd1b101a18d2

Products affected by CVE-2024-22543

Linksys » E1700 » Version: N/A

cpe:2.3:h:linksys:e1700:-
Linksys » E1700 Firmware » Version: 1.0.04

cpe:2.3:o:linksys:e1700_firmware:1.0.04

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-22543

Products

Pricing

Contact Us