CVE-2005-2915

Name: CVE-2005-2915
Creator: NVD / NIST
Published: 2005-09-14T21:03:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.61%

Last modified Jun 16, 2026

CVE-2005-2915 is a vulnerability of currently unknown severity. ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, uses weak encryption (XOR encoding with a fixed byte mask) for configuration information, which could allow attackers to decrypt the information and possibly re-encrypt it in conjunction with CVE-2005-2914.. EPSS estimates a 0.61% chance of exploitation in the next 30 days.

Description

ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, uses weak encryption (XOR encoding with a fixed byte mask) for configuration information, which could allow attackers to decrypt the information and possibly re-encrypt it in conjunction with CVE-2005-2914.

Metrics

EPSS Probability

0.61%

44.9th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Linksys	Wrt54g	2.04.4_non_default
Linksys	Wrt54g	3.01.3
Linksys	Wrt54g	3.03.6

References

Timeline

Published: Sep 14, 2005
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2005-2915?

How severe is CVE-2005-2915?

Severity scoring for CVE-2005-2915 is pending analysis. The EPSS model estimates a 0.61% probability of exploitation in the next 30 days.

How do I fix CVE-2005-2915?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2005-2915?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST