An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.
A command injection class vulnerability (CWE-77) exists in the handling of the 'enable' parameter passed to the /goform/set_hidessid_cfg endpoint in the device's web interface. This parameter is not properly validated or sanitized before use, allowing an attacker to inject and execute arbitrary system commands. The attack does not require authentication or user interaction, and can be carried out remotely over the network.
An attacker can gain full control of the device, including the ability to read and modify configuration, eavesdrop on network traffic, and use the router as an entry point for further actions on the local network.
Patches available from the manufacturer should be applied according to the references. Until an update is applied, it is recommended to restrict access to the device's administrative panel exclusively to trusted hosts and isolate the device from public network access using a firewall.
LB-Link BL-AC2100 with firmware version V1.0.4 and earlier versions
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HLb Link Bl Ac2100
HWLb-Linkwszystkie wersjeLb Link Bl Ac2100 Firmware
OSLb-Link≤ 1.0.4
Related vulnerabilities
RCE w LB-Link BL-AC2100 przez parametry set_LimitClient_cfg
A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function de...
Zakodowane na stałe dane uwierzytelniające w routerze LB-LINK BL-WR1300H
LB-LINK BL-W1210M — przechowywanie danych uwierzytelniających w postaci jawnej
LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 we...