CRITICAL🇵🇱 Wersja polska

CVE-2025-29063

CVSS 9.8v3.1pub. 2025-04-02upd. 2025-04-29

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.

🤖 AI Analysis
How it works

A command injection class vulnerability (CWE-77) exists in the handling of the 'enable' parameter passed to the /goform/set_hidessid_cfg endpoint in the device's web interface. This parameter is not properly validated or sanitized before use, allowing an attacker to inject and execute arbitrary system commands. The attack does not require authentication or user interaction, and can be carried out remotely over the network.

Impact

An attacker can gain full control of the device, including the ability to read and modify configuration, eavesdrop on network traffic, and use the router as an entry point for further actions on the local network.

Mitigation & patch

Patches available from the manufacturer should be applied according to the references. Until an update is applied, it is recommended to restrict access to the device's administrative panel exclusively to trusted hosts and isolate the device from public network access using a firewall.

Who is affected

LB-Link BL-AC2100 with firmware version V1.0.4 and earlier versions

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Lb Link Bl Ac2100

    HW
    Lb-Link
    wszystkie wersje
  • Lb Link Bl Ac2100 Firmware

    OS
    Lb-Link
    ≤ 1.0.4
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-29062CRITICAL9.8PL ✓ten sam produkt

RCE w LB-Link BL-AC2100 przez parametry set_LimitClient_cfg

CVE-2025-10773HIGH7.4ten sam produkt

A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function de...

CVE-2024-51431CRITICAL9.8PL ✓ten sam vendor

Zakodowane na stałe dane uwierzytelniające w routerze LB-LINK BL-WR1300H

CVE-2024-33375CRITICAL9.8PL ✓ten sam vendor

LB-LINK BL-W1210M — przechowywanie danych uwierzytelniających w postaci jawnej

CVE-2023-26801CRITICAL9.8ten sam vendor

LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 we...