CRITICAL🇵🇱 Wersja polska

CVE-2025-29062

CVSS 9.8v3.1pub. 2025-04-02upd. 2025-04-29

An issue in BL-AC2100 <=V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the set_LimitClient_cfg of the goahead webservice.

🤖 AI Analysis
How it works

The command injection vulnerability (CWE-77) occurs in the web service based on the GoAhead server. An attacker can pass malicious data in the time1 and time2 parameters of the set_LimitClient_cfg function call, which are then processed without proper validation and sanitization. This enables injection and execution of arbitrary system commands in the context of the running service.

Impact

An attacker can remotely gain full control over the device by executing arbitrary code without authentication. As a result, it is possible to compromise the confidentiality, integrity, and availability of the system and the entire supported network.

Mitigation & patch

Security patches available from the manufacturer should be applied in accordance with the references. As a temporary measure, it is recommended to restrict access to the administrative interface only to trusted local networks and to block access from the Internet using a firewall.

Who is affected

LB-Link BL-AC2100 with firmware version V1.0.4 and earlier

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Lb Link Bl Ac2100

    HW
    Lb-Link
    wszystkie wersje
  • Lb Link Bl Ac2100 Firmware

    OS
    Lb-Link
    ≤ 1.0.4
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-29063CRITICAL9.8PL ✓ten sam produkt

RCE w LB-Link BL-AC2100 — nieprawidłowa obsługa parametru enable

CVE-2025-10773HIGH7.4ten sam produkt

A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function de...

CVE-2024-51431CRITICAL9.8PL ✓ten sam vendor

Zakodowane na stałe dane uwierzytelniające w routerze LB-LINK BL-WR1300H

CVE-2024-33375CRITICAL9.8PL ✓ten sam vendor

LB-LINK BL-W1210M — przechowywanie danych uwierzytelniających w postaci jawnej

CVE-2023-26801CRITICAL9.8ten sam vendor

LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 we...