First published: Sat Dec 26 2020(Updated: )
Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authenticated users to execute arbitrary commands via goform/systemCommand?command= in conjunction with the goform/pingstart program.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Linksys Re6500 Firmware | <1.0.011.001 | |
LINKSYS RE6500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Belkin LINKSYS RE6500 vulnerability is CVE-2020-35714.
The severity of CVE-2020-35714 is high with a severity value of 8.8.
CVE-2020-35714 allows remote authenticated users to execute arbitrary commands through the goform/systemCommand?command= in conjunction with the goform/pingstart program.
The affected software for CVE-2020-35714 is Belkin LINKSYS RE6500 devices before version 1.0.11.001.
No, LINKSYS RE6500 devices are not vulnerable to CVE-2020-35714.