CRITICAL🇵🇱 Wersja polska

CVE-2025-29228

CVSS 9.8v3.1pub. 2025-12-23upd. 2026-01-06

Linksys E5600 V1.1.0.26 is vulnerable to command injection in the runtime.macClone function via the mc.ip parameter.

🤖 AI Analysis
How it works

The vulnerability occurs in the runtime.macClone function, which does not perform proper validation or sanitization of input data passed through the mc.ip parameter. An attacker can inject malicious system commands into this parameter value, which will be executed by the device with the privileges of the process handling the request. The attack is possible remotely over the network without requiring any credentials.

Impact

An attacker can gain full control over the device by executing arbitrary system commands — leading to violation of confidentiality, integrity, and availability of the system. It is possible to take over the router, modify network configuration, and use the device as an entry point to the local network.

Mitigation & patch

Apply patches available from the manufacturer according to the references. Until the fix is deployed, it is recommended to restrict access to the device management interface only to trusted hosts and implement network segmentation.

Who is affected

Linksys E5600 with firmware version V1.1.0.26

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Linksys E5600

    HW
    Linksys
    wszystkie wersje
  • Linksys E5600 Firmware

    OS
    Linksys
    1.1.0.26
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-29229CRITICAL9.8PL ✓ten sam produkt

Command injection w Linksys E5600 — funkcja ddnsStatus

CVE-2025-45489CRITICAL9.8PL ✓ten sam produkt

Command injection w Linksys E5600 via parametr hostname (DynDNS)

CVE-2025-45487CRITICAL9.8PL ✓ten sam produkt

Command injection w Linksys E5600 — funkcja runtime.InternetConnection

CVE-2025-45488CRITICAL9.8PL ✓ten sam produkt

Command injection w Linksys E5600 via parametr mailex funkcji DynDNS

CVE-2025-45490CRITICAL9.8PL ✓ten sam produkt

Command injection w Linksys E5600 via parametr password funkcji DynDNS