Browse all 93 CVE security advisories affecting Linksys. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Linksys operates primarily as a manufacturer of consumer networking hardware, including wireless routers and mesh systems, facilitating home and small office internet connectivity. Security audits have identified 93 Common Vulnerabilities and Exposures (CVEs) associated with its product line, predominantly stemming from embedded Linux-based firmware. Historically, the most prevalent vulnerability classes involve Remote Code Execution (RCE) and Cross-Site Scripting (XSS), often exploited through unauthenticated access to web management interfaces. Privilege escalation flaws also frequently appear, allowing attackers to gain administrative control over devices. Notable incidents include critical flaws in older WRT series routers that permitted full system compromise without user interaction. These issues largely result from insufficient input validation and hardcoded credentials in legacy firmware versions. While newer models have improved security postures, the historical pattern highlights significant risks in maintaining long-term support for consumer-grade networking equipment with complex embedded software stacks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-1406 | Linksys WRT54GL Web Management Interface SysInfo1.htm information disclosure — WRT54GLCWE-200 | 4.3 | Medium | 2024-02-10 |
| CVE-2024-1405 | Linksys WRT54GL Web Management Interface wlaninfo.htm information disclosure — WRT54GLCWE-200 | 4.3 | Medium | 2024-02-10 |
| CVE-2024-1404 | Linksys WRT54GL Web Management Interface SysInfo.htm information disclosure — WRT54GLCWE-200 | 4.3 | Medium | 2024-02-09 |
This page lists every published CVE security advisory associated with Linksys. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.