3 matches found
The vulnerability of the geteasycfg function (/cgi-bin/lighttpd.cgi) of the Web Management Interface component of the microprogramming-based router LB-LINK BL-AC3600 allows a attacker to disclose protected information.
The vulnerability of the geteasycfg function /cgi-bin/lighttpd.cgi of the Web Management Interface component of the microprogramming-based router LB-LINK BL-AC3600 is related to insufficient protection of operational data. Exploiting this vulnerability could allow an attacker to disclose sensitiv...
CVE-2025-7564
A vulnerability, which was classified as critical, has been found in LB-LINK BL-AC3600 1.0.22. Affected by this issue is some unknown functionality of the file /etc/shadow. The manipulation with the input root:blinkadmin leads to hard-coded credentials. Local access is required to approach this...
The vulnerability of the `easy_uci_set_option_string_0()` function in the `/cgi-bin/lighttpd.cgi` file of the LB-LINK BL-AC3600 router’s microprogramming system allows a hacker to execute arbitrary code.
The vulnerability of the easyucisetoptionstring0 function in the /cgi-bin/lighttpd.cgi file of the LB-LINK BL-AC3600 router microprogramming system is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability could allow an attacker operating...