74 matches found
CVE-2022-37235
Netgear Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router R7000-V1.0.11.13410.2.119 is vulnerable to Buffer Overflow via the wl binary in firmware. There is a stack overflow vulnerability caused by strncat...
CVE-2025-1610
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1609
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this vulnerability is the function websGetVar of the file /goform/setcmd. The manipulation of the argument cmd leads to os command injection. The attack can be launched remotely. The exploit has...
EUVD-2025-4391
Malicious code in bioql PyPI...
EUVD-2025-4389
Malicious code in bioql PyPI...
EUVD-2022-44677
Malicious code in bioql PyPI...
CVE-2025-57685
The LB-Link routers, including the BL-AC2100AZ3 V1.0.4, BL-WR4000 v2.5.0, BL-WR9000AE4 v2.4.9, BL-AC1900AZ2 v1.0.2, BL-X26AC8 v1.2.8, and BL-LTE300DA4 V1.2.3 models, are vulnerable to unauthorized command injection. Attackers can exploit this vulnerability by accessing the /goform/setserialcfg...
LB-LINK多款产品 安全漏洞
LB-LINK BL-AC1900 and others are products of China Bilink LB-LINK.LB-LINK BL-AC1900 is a wireless router.LB-LINK BL-AC3600 is a dual-band Gigabit wireless router that supports both 2.4GHz and 5GHz bands for home and small office networks.LB-LINK AC2100AZ3 is a router. A security vulnerability...
LB-LINK多款产品 安全漏洞
LB-LINK BL-AC1900 and others are products of China Bilink LB-LINK.LB-LINK BL-AC1900 is a wireless router.LB-LINK BL-AC2100 is a wireless Wi-Fi 6 router.LB-LINK BL-AC3600 is a dual-band Gigabit wireless router that supports 2.4 GHz and 5 GHz bands for home and small office networks. A security...
CVE-2022-41484
Tenda AC1900 AP500USV1180320Beta was discovered to contain a buffer overflow in the 0x32384 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...
CVE-2025-1608
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-1610
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1610
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1610 LB-LINK AC1900 Router set_blacklist websGetVar os command injection
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1610
LB-LINK AC1900 Router 1.0.2 is affected by an OS command injection in the websGetVar function of /goform/set_blacklist. The vulnerability stems from manipulating the mac/enable parameter, potentially allowing remote exploitation. The CVE is supported by multiple sources (NVD, Red Hat, CVE lists) ...
CVE-2025-1610 LB-LINK AC1900 Router set_blacklist websGetVar os command injection
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this issue is the function websGetVar of the file /goform/setblacklist. The manipulation of the argument mac/enable leads to os command injection. The attack may be launched remotely. The exploit has...
CVE-2025-1608
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-1608
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-1609 LB-LINK AC1900 Router set_cmd websGetVar os command injection
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by this vulnerability is the function websGetVar of the file /goform/setcmd. The manipulation of the argument cmd leads to os command injection. The attack can be launched remotely. The exploit has...
CVE-2025-1609
CVE-2025-1609 affects LB-LINK AC1900 Router firmware 1.0.2. The vulnerability lies in the websGetVar handling of the cmd parameter in /goform/set_cmd, enabling remote os command injection. Impact: potential remote compromise with high confidentiality, integrity, and availability implications as p...