RouterCVE

CVE-2024-48286

HIGH
8.0CVSS v3
CVSS v2
24.15% EPSS (exploit probability)
CWE-77CWE

Description

Linksys E3000 1.0.06.002_US is vulnerable to command injection via the diag_ping_start function.

CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Affected routers (2)

VendorModelMatched viaAffected versionsFixed inPatch?
Cradlepoint Cradlepoint E300 No
Cradlepoint Cradlepoint E3000 No

External references