ГлавнаяУязвимости → CVE-2025-29063
9.8критическая

CVE-2025-29063

Описание

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.

Затрагиваемое ПО
Lb-link Bl-ac2100 firmwareLb-link Bl-ac2100
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.yuque.com/jichujiliangdanwei/vwbq9e/grfgkm2kvk6btwbphttps://www.yuque.com/jichujiliangdanwei/vwbq9e/ux1426h170rhgfn7https://www.yuque.com/jichujiliangdanwei/vwbq9e/ux1426h170rhgfn7