CVE-2013-10062

A directory traversal vulnerability exists in Linksys router's web interface (tested on the E1500 model firmware versions 1.0.00, 1.0.04, and 1.0.05), specifically in the /apply.cgi endpoint. Authenticated attackers can exploit the next_page POST parameter to access arbitrary files outside the intended web root by injecting traversal sequences. This allows exposure of sensitive system files and configuration data.

CVSS

No CVSS.

References

Link	Resource
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb
https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004
https://www.exploit-db.com/exploits/24475
https://www.vulncheck.com/advisories/linksys-legacy-routers-path-traversal
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb
https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004
https://www.exploit-db.com/exploits/24475

Configurations

No configuration.

History

06 Aug 2025, 14:15

Type	Values Removed	Values Added
References	~~() https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb -~~	() https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linksys_e1500_traversal.rb -
References	~~() https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004 -~~	() https://web.archive.org/web/20150428184015/http://www.s3cur1ty.de/m1adv2013-004 -
References	~~() https://www.exploit-db.com/exploits/24475 -~~	() https://www.exploit-db.com/exploits/24475 -

04 Aug 2025, 15:06

Type	Values Removed	Values Added
Summary		(es) Existe una vulnerabilidad de navegación de directorio en la interfaz web del router Linksys (probada en las versiones de firmware 1.0.00, 1.0.04 y 1.0.05 del modelo E1500), específicamente en el endpoint /apply.cgi. Los atacantes autenticados pueden explotar el parámetro POST next_page para acceder a archivos arbitrarios fuera de la raíz web deseada mediante la inyección de secuencias de navegación. Esto permite la exposición de archivos confidenciales del sistema y datos de configuración.

01 Aug 2025, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-01 21:15

Updated : 2025-08-06 14:15

NVD link : CVE-2013-10062

Mitre link : CVE-2013-10062

CVE.ORG link : CVE-2013-10062

JSON object : View

Products Affected

No product.

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

JSON object

Attach tags to CVE-2013-10062

Attach tags to `CVE-2013-10062`