Логотип exploitDog
bind:CVE-2025-7574
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2025-7574

Количество 3

Количество 3

nvd логотип

CVE-2025-7574

25 дней назад

A vulnerability, which was classified as critical, was found in LB-LINK BL-AC1900, BL-AC2100_AZ3, BL-AC3600, BL-AX1800, BL-AX5400P and BL-WR9000 up to 20250702. Affected is the function reboot/restore of the file /cgi-bin/lighttpd.cgi of the component Web Interface. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS3: 9.8
EPSS: Низкий
github логотип

GHSA-jw6q-rx83-mg5v

24 дня назад

A vulnerability, which was classified as critical, was found in LB-LINK BL-AC1900, BL-AC2100_AZ3, BL-AC3600, BL-AX1800, BL-AX5400P and BL-WR9000 up to 20250702. Affected is the function reboot/restore of the file /cgi-bin/lighttpd.cgi of the component Web Interface. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS3: 9.8
EPSS: Низкий
fstec логотип

BDU:2025-09119

около 1 месяца назад

Уязвимость функций reboot(), restore() файла /cgi-bin/lighttpd.cgi микропрограммного обеспечения маршрутизаторов LB-LINK, позволяющая нарушителю выполнить произвольный код

CVSS3: 9.8
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
nvd логотип
CVE-2025-7574

A vulnerability, which was classified as critical, was found in LB-LINK BL-AC1900, BL-AC2100_AZ3, BL-AC3600, BL-AX1800, BL-AX5400P and BL-WR9000 up to 20250702. Affected is the function reboot/restore of the file /cgi-bin/lighttpd.cgi of the component Web Interface. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS3: 9.8
0%
Низкий
25 дней назад
github логотип
GHSA-jw6q-rx83-mg5v

A vulnerability, which was classified as critical, was found in LB-LINK BL-AC1900, BL-AC2100_AZ3, BL-AC3600, BL-AX1800, BL-AX5400P and BL-WR9000 up to 20250702. Affected is the function reboot/restore of the file /cgi-bin/lighttpd.cgi of the component Web Interface. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS3: 9.8
0%
Низкий
24 дня назад
fstec логотип
BDU:2025-09119

Уязвимость функций reboot(), restore() файла /cgi-bin/lighttpd.cgi микропрограммного обеспечения маршрутизаторов LB-LINK, позволяющая нарушителю выполнить произвольный код

CVSS3: 9.8
0%
Низкий
около 1 месяца назад

Уязвимостей на страницу