lb-link
Networking Infrastructurecommercial
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting lb-link.
- CVE-2026-4228LB-LINK BL-WR9000 set_wifi sub_458754 command injection6.3
- CVE-2026-4227LB-LINK BL-WR9000 get_hidessid_cfg sub_44D844 buffer overflow8.8
- CVE-2026-4226LB-LINK BL-WR9000 get_virtual_cfg sub_44E8D0 stack-based overflow8.8
- CVE-2025-10773B-Link BL-AC2100 Web Management set_delshrpath_cfg delshrpath stack-based overflow8.8
- CVE-2025-57278The LB-Link BL-CPE300M AX300 4G LTE Router firmware version BL-R8800_B10_ALK_SL_V01.01.02P42U14_06 does not implement proper session handling. After a user authenticates from a specific IP address,...8.8
- CVE-2025-9580LB-LINK BL-X26 HTTP set_blacklist os command injection6.3
- CVE-2025-9579LB-LINK BL-X26 HTTP set_hidessid_cfg os command injection6.3
- CVE-2025-7574LB-LINK BL-WR9000 Web Interface lighttpd.cgi restore improper authentication9.8
- CVE-2025-7573LB-LINK BL-WR9000 lighttpd.cgi bs_GetManPwd information disclosure5.3
- CVE-2025-7572LB-LINK BL-WR9000 lighttpd.cgi bs_GetHostInfo information disclosure5.3
- CVE-2025-7565LB-LINK BL-AC3600 Web Management Interface lighttpd.cgi geteasycfg information disclosure5.3
- CVE-2025-7564LB-LINK BL-AC3600 shadow hard-coded credentials7.8
- CVE-2025-4076LB-LINK BL-AC3600 Password lighttpd.cgi easy_uci_set_option_string_0 command injection6.3
- CVE-2025-29062An issue in BL-AC2100 <=V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the set_LimitClient_cfg of the goahead webservice.9.8
- CVE-2025-29063An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.9.8