Every CVE whose affected-product data names Linksys Wrt54g, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2008-1268 — CVSS 10.0 (critical): The FTP server on the Linksys WRT54G 7 router with 7.00.1 firmware does not verify authentication credentials, which allows remote…
CVE-2008-1247 — CVSS 10.0 (critical): The web interface on the Linksys WRT54g router with firmware 1.00.9 does not require credentials when invoking scripts, which allows remote…
CVE-2008-1265 — CVSS 7.8 (high): The Linksys WRT54G router allows remote attackers to cause a denial of service (device restart) via a long username and password to the FTP…
CVE-2005-2914 — CVSS 7.5 (high): ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, does not use an…
CVE-2011-4499 — CVSS 7.5 (high): The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with…
CVE-2004-2606 — CVSS 7.5 (high): The Web interface in Linksys WRT54G 2.02.7 and BEFSR41 version 3, with the firewall disabled, allows remote attackers to attempt to login…
CVE-2005-2799 — CVSS 7.5 (high): Buffer overflow in apply.cgi in Linksys WRT54G 3.01.03, 3.03.6, and possibly other versions before 4.20.7, allows remote attackers to…
CVE-2006-2559 — CVSS 7.5 (high): Linksys WRT54G Wireless-G Broadband Router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a…
CVE-2008-1264 — CVSS 7.5 (high): The Linksys WRT54G router has "admin" as its default FTP password, which allows remote attackers to access sensitive files including…
CVE-2004-0580 — CVSS 5.0 (medium): DHCP on Linksys BEFSR11, BEFSR41, BEFSR81, and BEFSRU31 Cable/DSL Routers, firmware version 1.45.7, does not properly clear previously used…
CVE-2005-2915 — CVSS 5.0 (medium): ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, uses weak…
CVE-2005-2434 — CVSS 5.0 (medium): Linksys WRT54G router uses the same private key and certificate for every router, which allows remote attackers to sniff the SSL connection…
CVE-2006-5202 — CVSS 5.0 (medium): Linksys WRT54g firmware 1.00.9 does not require credentials when making configuration changes, which allows remote attackers to modify…
CVE-2005-2912 — CVSS 5.0 (medium): Linksys WRT54G router allows remote attackers to cause a denial of service (CPU consumption and server hang) via an HTTP POST request with…
CVE-2005-2916 — CVSS 5.0 (medium): Linksys WRT54G 3.01.03, 3.03.6, 4.00.7, and possibly other versions before 4.20.7, does not verify user authentication until after an HTTP…
CVE-2008-1263 — CVSS 4.0 (medium): The Linksys WRT54G router stores passwords and keys in cleartext in the Config.bin file, which might allow remote authenticated users to…