CVE-2025-52692

Summary

Successful exploitation of the vulnerability could allow an attacker with local network access to send a specially crafted URL to access certain administration functions without login credentials.

Affected Software

VendorProductVersion RangeStatus
LinksysLinksys E9450-SG1.2.00.052affected

Weaknesses

Workarounds

As the Linksys E9450-SG has reached End-of-Life status, no firmware update is planned for this issue. Users and administrators of the affected product version are advised to:

  • Disable remote administration
  • Restrict router management access to trusted devices on the local network
  • Avoid enabling Telnet access
  • Consider upgrading to a model actively supported by Linksys

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References