Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-9651

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00934EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-9654

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00934EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/09/24 12:28 a.m.11 views

CVE-2025-10773

A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function delshrpath of the file /goform/setdelshrpathcfg of the component Web Management Interface. The manipulation of the argument Type results in stack-based buffer overflow. The attack may be...

9CVSS6.7AI score0.03717EPSS
Exploits1References1
OSV
OSV
added 2025/09/22 1:15 a.m.4 views

CVE-2025-10773

A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function delshrpath of the file /goform/setdelshrpathcfg of the component Web Management Interface. The manipulation of the argument Type results in stack-based buffer overflow. The attack may be...

8.7CVSS6AI score0.03717EPSS
Exploits1References4
CVE
CVE
added 2025/09/22 12:2 a.m.22 views

CVE-2025-10773

The CVE-2025-10773 affects B-Link BL-AC2100 (up to firmware 1.0.3) via the Web Management Interface: the delshrpath function in /goform/set_delshrpath_cfg is vulnerable when the Type argument is manipulated, causing a stack-based buffer overflow. The issue is exploitable remotely; public exploits...

9CVSS8.9AI score0.03717EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/09/22 12:2 a.m.8 views

CVE-2025-10773 B-Link BL-AC2100 Web Management set_delshrpath_cfg delshrpath stack-based overflow

A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function delshrpath of the file /goform/setdelshrpathcfg of the component Web Management Interface. The manipulation of the argument Type results in stack-based buffer overflow. The attack may be...

9CVSS0.03717EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.4 views

LB-LINK BL-AC2100 安全漏洞

LB-LINK BL-AC2100 is a wireless Wi-Fi 6 router from China Bilink LB-LINK. A security vulnerability exists in LB-LINK BL-AC2100 1.0.3 and earlier versions, which originates from the improper handling of parameter Type in the delshrpath function of the /goform/setdelshrpathcfg file in the Web...

9CVSS8.9AI score0.03717EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.8 views

PT-2025-38671

Name of the Vulnerable Software and Affected Versions B-Link BL-AC2100 versions up to 1.0.3 Description A security issue exists in the Web Management Interface component of B-Link BL-AC2100. The delshrpath function, located in the file /goform/set delshrpath cfg, is susceptible to a stack-based...

9CVSS8.5AI score0.03717EPSS
Exploits1References10
VulnCheck KEV
VulnCheck KEV
added 2025/07/02 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-29063

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/sethidessidcfg is not handled properly...

9.8CVSS6.2AI score0.00934EPSS
In wildExploits1References156
RedhatCVE
RedhatCVE
added 2025/04/04 12:40 a.m.14 views

CVE-2025-29063

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/sethidessidcfg is not handled properly...

9.8CVSS8.2AI score0.00934EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/04 12:38 a.m.10 views

CVE-2025-29062

An issue in BL-AC2100 =V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the setLimitClientcfg of the goahead webservice...

9.8CVSS8.2AI score0.00934EPSS
Exploits1References1
OSV
OSV
added 2025/04/02 9:15 p.m.2 views

CVE-2025-29063

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/sethidessidcfg is not handled properly...

9.8CVSS6.1AI score0.00934EPSS
Exploits1References2
OSV
OSV
added 2025/04/02 9:15 p.m.5 views

CVE-2025-29062

An issue in BL-AC2100 =V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the setLimitClientcfg of the goahead webservice...

9.8CVSS6.1AI score0.00934EPSS
Exploits1References2
NVD
NVD
added 2025/04/02 9:15 p.m.29 views

CVE-2025-29063

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/sethidessidcfg is not handled properly...

9.8CVSS0.00934EPSS
Exploits1References2
NVD
NVD
added 2025/04/02 9:15 p.m.14 views

CVE-2025-29062

An issue in BL-AC2100 =V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the setLimitClientcfg of the goahead webservice...

9.8CVSS0.00934EPSS
Exploits1References2
CVE
CVE
added 2025/04/02 12:0 a.m.70 views

CVE-2025-29063

CVE-2025-29063 affects BL-AC2100 (V1.0.4 and earlier). The issue arises from improper handling of the enable parameter in /goform/set_hidessid_cfg, allowing a remote attacker to execute arbitrary code. The metric in the entry shows a high-severity impact (CVSS 3.1: 9.8, Critical; Attack Vector: N...

9.8CVSS8.1AI score0.00934EPSS
In wildExploits1References2Affected Software1
CVE
CVE
added 2025/04/02 12:0 a.m.73 views

CVE-2025-29062

CVE-2025-29062 affects LB-LINK BL-AC2100 routers (≤ V1.0.4). The flaw is in the goahead webservice’s set_LimitClient_cfg, where time1/time2 parameters enable remote code execution. Documented CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (base 9.8, CRITICAL). PoC/automation notes are present in s...

9.8CVSS8.1AI score0.00934EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/04/02 12:0 a.m.18 views

CVE-2025-29062

An issue in BL-AC2100 =V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the setLimitClientcfg of the goahead webservice...

0.00934EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/04/02 12:0 a.m.4 views

CVE-2025-29062

An issue in BL-AC2100 =V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the setLimitClientcfg of the goahead webservice...

8.1AI score0.00934EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/04/02 12:0 a.m.5 views

CVE-2025-29063

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/sethidessidcfg is not handled properly...

8.1AI score0.00934EPSS
Exploits1References2
Rows per page
Query Builder