Linksys E2500 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Linksys E2500 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2025-44654 — CVSS 9.8 (critical): In Linksys E2500 3.0.04.002, the chroot_local_user option is enabled in the vsftpd configuration file. This could lead to unauthorized…
CVE-2024-40495 — CVSS 8.0 (high): A vulnerability was discovered in Linksys Router E2500 with firmware 2.0.00, allows authenticated attackers to execute arbitrary code via…
CVE-2018-3953 — CVSS 7.2 (high): Devices in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04) are…
CVE-2018-3954 — CVSS 7.2 (high): Devices in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04) are…
CVE-2018-3955 — CVSS 7.2 (high): An exploitable operating system command injection exists in the Linksys ESeries line of routers (Linksys E1200 Firmware Version 2.0.09 and…