Shodan
Vulnerabilities
Vulnerable Software
Linksys:  >> E5600 Firmware  Security Vulnerabilities
CVE-2025-45490
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the password parameter.
CVSS Score
9.8
EPSS Score
0.01
Published
2025-05-06
CVE-2025-45491
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the username parameter.
CVSS Score
9.8
EPSS Score
0.01
Published
2025-05-06
CVE-2025-45487
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.InternetConnection function.
CVSS Score
9.8
EPSS Score
0.01
Published
2025-05-06
CVE-2025-45488
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the mailex parameter.
CVSS Score
9.8
EPSS Score
0.014
Published
2025-05-06
CVE-2025-45489
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the hostname parameter.
CVSS Score
9.8
EPSS Score
0.01
Published
2025-05-06
CVE-2025-29223
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the pt parameter in the traceRoute function.
CVSS Score
6.3
EPSS Score
0.025
Published
2025-03-21
CVE-2025-29226
In Linksys E5600 V1.1.0.26, the \usr\share\lua\runtime.lua file contains a command injection vulnerability in the runtime.pingTest function via the pt["count"] parameter.
CVSS Score
6.3
EPSS Score
0.025
Published
2025-03-21
CVE-2025-29227
In Linksys E5600 V1.1.0.26, the \usr\share\lua\runtime.lua file contains a command injection vulnerability in the runtime.pingTest function via the pt["pkgsize"] parameter.
CVSS Score
6.3
EPSS Score
0.025
Published
2025-03-21
CVE-2025-29230
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.emailReg function. The vulnerability can be triggered via the `pt["email"]` parameter.
CVSS Score
8.6
EPSS Score
0.032
Published
2025-03-21
CVE-2025-22996
A stored cross-site scripting (XSS) vulnerability in the spf_table_content component of Linksys E5600 Router Ver. 1.1.0.26 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the desc parameter.
CVSS Score
4.8
EPSS Score
0.0
Published
2025-01-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved