CVE-2025-25522 — HIGH (7.3)

Vulnerability Description

Buffer overflow vulnerability in Linksys WAP610N v1.0.05.002 due to the lack of length verification, which is related to the time setting operation. The attacker can directly control the remote target device by successfully exploiting this vulnerability.

CVSS Score

7.3

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

HIGH

Availability

LOW

Affected Products

Vendor	Product	Versions
Linksys	Wap610N Firmware	1.0.05.002
Linksys	Wap610N	-

Related Weaknesses (CWE)

CWE-120

References

https://gist.github.com/XiaoCurry/f2365f4f6d18b2b4518ee20d5c091e1bBroken Link

FAQ

What is CVE-2025-25522?

CVE-2025-25522 is a vulnerability with a CVSS score of 7.3 (HIGH). Buffer overflow vulnerability in Linksys WAP610N v1.0.05.002 due to the lack of length verification, which is related to the time setting operation. The attacker can directly control the remote target...

How severe is CVE-2025-25522?

CVE-2025-25522 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-25522?

Check the references section above for vendor advisories and patch information. Affected products include: Linksys Wap610N Firmware, Linksys Wap610N.