vulnerability context

CVE-2013-3307

CVSS 8.3 HIGHEPSS 92%CWE-78

Linksys E1000 devices through 2.1.02, E1200 devices before 2.0.05, and E3200 devices through 1.0.04 allow OS command injection via shell metacharacters in the apply.cgi ping_ip parameter on TCP port 52000.

Published 2025-07-11 · last modified 2026-06-16

details

CISA KEV status: Not in catalog
CVSS v3: 8.3 / HIGH
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
EPSS: 92% percentile (score 0.0562)
CWE: CWE-78

View on NVD → · cve.org

source mentions 1

[securityrss.ai] A new malware, AryStinger, has infected over 4,300 legacy routers, primarily D-Link models, to create a reconnais...Bluesky · 2d ago

source consensus

Bluesky1×

Want the 3-bullet summary of CVE-2013-3307, plus webhook alerts when KEV is updated? Pro is $10/mo.

Open in reader See Pro →