CVE-2025-52692

HIGH

8.8

Description

Successful exploitation of the vulnerability could allow an attacker with local network access to send a specially crafted URL to access certain administration functions without login credentials.

Details CVE

Score CVSS v3.18.8

SeveriteHIGH

Vecteur CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueADJACENT_NETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie12/19/2025

Derniere modification12/23/2025

Sourcenvd

Observations honeypot0

Produits affectes

linksys:e9450-sglinksys:e9450-sg_firmware

Faiblesses (CWE)

CWE-306

References

https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-118/(5f57b9bf-260d-4433-bf07-b6a79e9bb7d4)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.