Details of VAR-202511-0715

ID

VAR-202511-0715

CVE

CVE-2025-60690

TITLE

Linksys E1200 stack buffer overflow vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-29968

DESCRIPTION

A stack-based buffer overflow exists in the get_merge_ipaddr function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The function concatenates up to four user-supplied CGI parameters matching <parameter>_0~3 into a fixed-size buffer (a2) without bounds checking. Remote attackers can exploit this vulnerability via specially crafted HTTP requests to execute arbitrary code or cause denial of service without authentication. The Linksys E1200 is a router manufactured by Linksys, Inc

Trust: 1.44

sources: NVD: CVE-2025-60690 // CNVD: CNVD-2025-29968

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-29968

AFFECTED PRODUCTS

vendor:	linksys	model:	e1200	scope:	eq	version:	2.0.11.001	Trust: 1.0
vendor:	linksys	model:	e1200 e1200 v2.0.11.001 us.tar.gz	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2025-29968 // NVD: CVE-2025-60690

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2025-60690
value:	HIGH
Trust: 1.0
CNVD:	CNVD-2025-29968
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2025-29968
severity:	HIGH
baseScore:	8.3
vectorString:	AV:A/AC:L/AU:N/C:C/I:C/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2025-60690
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2025-29968 // NVD: CVE-2025-60690

PROBLEMTYPE DATA

problemtype:

CWE-121

Trust: 1.0

sources: NVD: CVE-2025-60690

EXTERNAL IDS

db:	NVD	id:	CVE-2025-60690	Trust: 1.6
db:	CNVD	id:	CNVD-2025-29968	Trust: 0.6

sources: CNVD: CNVD-2025-29968 // NVD: CVE-2025-60690

REFERENCES

url:	https://github.com/yifan20020708/sgtaint-0-day/blob/main/linksys/linksys-e1200/cve-2025-60690.md	Trust: 1.0
url:	http://linksys.com	Trust: 1.0
url:	https://www.linksys.com/	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2025-60690	Trust: 0.6

sources: CNVD: CNVD-2025-29968 // NVD: CVE-2025-60690

SOURCES

db:	CNVD	id:	CNVD-2025-29968
db:	NVD	id:	CVE-2025-60690

LAST UPDATE DATE

2025-12-19T19:39:43.429000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-29968	date:	2025-12-04T00:00:00
db:	NVD	id:	CVE-2025-60690	date:	2025-11-17T19:55:11.603

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-29968	date:	2025-12-04T00:00:00
db:	NVD	id:	CVE-2025-60690	date:	2025-11-13T17:15:48.980