.. / CVE-2024-27497

Exploit for Linksys E2000 1.0.06 position.js Improper Authentication (CVE-2024-27497)

Description:

Linksys E2000 Ver.1.0.06 build 1 is vulnerable to authentication bypass via the position.js file.

Nuclei Template

View the template here CVE-2024-27497.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2024/CVE-2024-27497.yaml
Copy

References:

https://github.com/fkie-cad/nvd-json-data-feeds
https://warp-desk-89d.notion.site/Linksys-E-2000-efcd532d8dcf4710a4af13fca131a5b8
https://github.com/Ostorlab/KEV
https://nvd.nist.gov/vuln/detail/CVE-2024-27497