This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Linksys WVBR0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web management portal. The issue lies in the lack of proper validation of user data before executing a system call. An attacker could leverage this vulnerability to execute code with root privileges. Was ZDI-CAN-4892.
CVE-2017-17411
Score elevated to 9.8 because EPSS predicts 92% probability of exploitation within the next 30 days (top 0.3% of all CVEs). NVD baseline CVSS 9.8 retained for reference. Confidence: see factors.
- High exploitation likelihood — EPSS 88%
No vendor fix yet — apply a workaround or compensating control (WAF / firewall / segmentation) and watch for a patch.
- CVSS v3
- 9.8
- EG Score
- 9.8(high)
- EPSS
- 99.7%
- KEV
- Not listed
Published
December 21, 2017
Last Modified
May 13, 2026
Advisory Details (5)
Auto-updated May 17, 2026Linksys WVBR0-25 - User-Agent Command Execution (Metasploit) - Hardware remote Exploit
https://www.exploit-db.com/exploits/43429/Linksys WVBR0 - 'User-Agent' Remote Command Injection - Hardware webapps Exploit
https://www.exploit-db.com/exploits/43363/Adds exploit module for CVE-2017-17411 by headlesszeke · Pull Request #9336 · rapid7/metasploit-framework · GitHub
https://github.com/rapid7/metasploit-framework/pull/9336Data Freshness Timeline
(refreshed 1× in last 7d / 8× in last 30d)
Each row is a source pipeline that fetched or updated this CVE on that date, with what changed. For example, "NVD update" means NVD published or revised its analysis for this CVE; "MITRE cvelistV5" means we ingested or refreshed it from the CNA feed. Most recent first.
- 2026-07-07 13:42 UTCEPSS rescore
- 2026-06-28 04:53 UTCEPSS rescore
- 2026-06-24 14:02 UTCEPSS rescore
- 2026-06-23 21:30 UTCEPSS rescore
- 2026-06-17 17:50 UTCEPSS rescore
- 2026-06-15 17:45 UTCEPSS rescore
- 2026-06-12 23:09 UTCEPSS rescore
- 2026-06-10 22:15 UTCEPSS rescore
- 2026-06-02 20:11 UTCEPSS rescore
- 2026-06-02 20:11 UTCEPSS rescore
- 2026-05-31 22:28 UTCEPSS rescore
- 2026-05-31 00:14 UTCEPSS rescore
- 2026-05-28 13:42 UTCEPSS rescore
- 2026-05-28 13:42 UTCEPSS rescore
- 2026-05-27 13:38 UTCEPSS rescore
- 2026-05-27 13:38 UTCEPSS rescore
- 2026-05-26 13:42 UTCEPSS rescore
- 2026-05-26 13:42 UTCEPSS rescore
- 2026-05-20 22:37 UTCEPSS rescore
- 2026-05-20 22:37 UTCEPSS rescore
- 2026-05-20 11:14 UTCEG score recompute
- 2026-05-20 11:14 UTCGHSA enrichment
- 2026-05-20 07:20 UTCEG score recompute
- 2026-05-20 07:20 UTCGHSA enrichment
- 2026-05-20 03:26 UTCEG score recompute
Show 17 moreShow fewer
- 2026-05-20 03:26 UTCGHSA enrichment
- 2026-05-19 23:32 UTCEG score recompute
- 2026-05-19 23:32 UTCGHSA enrichment
- 2026-05-19 19:38 UTCEG score recompute
- 2026-05-19 19:38 UTCGHSA enrichment
- 2026-05-19 15:44 UTCEG score recompute
- 2026-05-19 15:44 UTCGHSA enrichment
- 2026-05-19 11:50 UTCEG score recompute
- 2026-05-19 11:49 UTCGHSA enrichment
- 2026-05-19 07:55 UTCEG score recompute
- 2026-05-19 07:55 UTCGHSA enrichment
- 2026-05-19 04:02 UTCEG score recompute
- 2026-05-19 04:02 UTCGHSA enrichment
- 2026-05-19 00:07 UTCEG score recompute
- 2026-05-19 00:07 UTCGHSA enrichment
- 2026-05-18 21:30 UTCEPSS rescore
- 2026-05-18 21:30 UTCEPSS rescore
Publicly available exploits
(3 references)Working exploit code is in the public domain (1 Metasploit module) (2 Exploit-DB entries). Defenders should treat patch urgency accordingly — public PoCs typically lead to mass-exploitation within 24-72 hours.
- Exploit-DBEDB-43429First seen Jan 4, 2018
Linksys WVBR0-25 - User-Agent Command Execution (Metasploit)
Open source ↗ - Exploit-DBEDB-43363First seen Dec 14, 2017
Linksys WVBR0 - 'User-Agent' Remote Command Injection
Open source ↗ - Metasploitexploit/linux/http/linksys_wvbr0_user_agent_exec_noauth✓ verifiedFirst seen Dec 13, 2017
Linksys WVBR0-25 User-Agent Command Execution
Open source ↗
Frequently asked(5)
What is CVE-2017-17411?
When was CVE-2017-17411 disclosed?
Is CVE-2017-17411 actively exploited?
What is the CVSS score of CVE-2017-17411?
How do I remediate CVE-2017-17411?
Dependency Blast Radius
Explore the affected products and dependency analysis for CVE-2017-17411
Is Your Infrastructure Affected by CVE-2017-17411?
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.