CVE-2025-29223

Summary

CVE-2025-29223 is a command injection vulnerability affecting the Linksys E5600 v1.1.0.26 firmware. The issue lies within the traceRoute function, specifically the pt parameter. An attacker can exploit this vulnerability by injecting malicious commands through this parameter, potentially taking control of the affected device or accessing sensitive information. Successful exploitation could lead to significant security risks, including unauthorized system modifications or unlawful data access. It is crucial for users to update their Linksys E5600 firmware to a version that patches this vulnerability to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.