CVE-2025-60689 — MEDIUM (5.4)

Vulnerability Description

An unauthenticated command injection vulnerability exists in the Start_EPI function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The vulnerability occurs because user-supplied CGI parameters (wl_ant, wl_ssid, wl_rate, ttcp_num, ttcp_ip, ttcp_size) are concatenated into system command strings without proper sanitization and executed via wl_exec_cmd. Successful exploitation allows remote attackers to execute arbitrary commands on the device without authentication.

CVSS Score

5.4

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Linksys	E1200 Firmware	2.0.11.001
Linksys	E1200	2

Related Weaknesses (CWE)

CWE-77

References

http://linksys.comProduct
https://github.com/yifan20020708/SGTaint-0-day/blob/main/Linksys/Linksys-E1200/CExploitThird Party Advisory
https://www.linksys.com/Product

FAQ

What is CVE-2025-60689?

CVE-2025-60689 is a vulnerability with a CVSS score of 5.4 (MEDIUM). An unauthenticated command injection vulnerability exists in the Start_EPI function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The vulnerability occurs bec...

How severe is CVE-2025-60689?

CVE-2025-60689 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-60689?

Check the references section above for vendor advisories and patch information. Affected products include: Linksys E1200 Firmware, Linksys E1200.