CNNVD-202507-2902 Information

Jul 22, 2025 cve

CNNVD ID

CNNVD-202507-2902

CVE-2025-8019

CNNVD Published: 2025-07-22

Description (Chinese)

Shenzhen Libituo Technology LBT-T300-T310是中国力必拓科技（Shenzhen Libituo Technology）公司的一款工业路由器。 Shenzhen Libituo Technology LBT-T300-T310 2.2.3.6版本存在安全漏洞，该漏洞源于文件at/appy.cgi中函数sub_40B6F0的错误操作导致缓冲区溢出。

Description (English)

Shenzhen Libituo Technology LBT-T300-T310 is an industrial router of Shenzhen Libituo Technology. There is a security loophole in version 2.2.3.6 of Shenzhen Libituo Technology LBT-T300-T310 2.2.3.6, which stems from the error in the document at/appy.cgi function sub 40B6F0, resulting in a buffer zone spill.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

力必拓科技

Published

2025-07-22

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.317222 https://vuldb.com/?id.317222 https://vuldb.com/?submit.619530 https://github.com/turing-wue/IoT-vul/blob/main/LBT-T300/README.md https://github.com/turing-wue/IoT-vul/blob/main/LBT-T300/README.md#payload https://access.redhat.com/security/cve/cve-2025-8019 https://nvd.nist.gov/vuln/detail/CVE-2025-8019

Share on: