Lb-Link Bl-Ac2100 Firmware vulnerabilities
3 known vulnerabilities affecting lb-link/bl-ac2100_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-29063P2CRITICALCVSS 9.8Exploited≤ 1.0.42025-04-02
CVE-2025-29063 [CRITICAL] CWE-77 CVE-2025-29063: An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the e
An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.
nvd
CVE-2025-10773P2HIGHCVSS 8.8≤ 1.0.32025-09-22
CVE-2025-10773 [HIGH] CWE-119 CVE-2025-10773: A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the f
A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function delshrpath of the file /goform/set_delshrpath_cfg of the component Web Management Interface. The manipulation of the argument Type results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been released to
nvd
CVE-2025-29062P3CRITICALCVSS 9.8≤ 1.0.42025-04-02
CVE-2025-29062 [CRITICAL] CWE-77 CVE-2025-29062: An issue in BL-AC2100 <=V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and
An issue in BL-AC2100 <=V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the set_LimitClient_cfg of the goahead webservice.
nvd