Linksys E5600 V1.1.0.26 is vulnerable to command injection in the runtime.macClone function via the mc.ip parameter.
Linksys E5600 V1.1.0.26 is vulnerable to command injection in the runtime.macClone function via the mc.ip parameter.
Specific version info not stated in the advisory. If you don't recognise this software, you're probably not affected.
See the GitHub issue/commit: https://github.com/JZP018/Vuln/blob/main/linsys/E5600/CI_macClone_mc.ip/CI_macClone_mc.ip.md As immediate mitigation: restrict network access to affected systems if possible.