CNNVD-202508-3299 Information

CNNVD ID

CNNVD-202508-3299

Related CVE

CVE-2025-9579

• CNNVD Published: 2025-08-28

Description (Chinese)

LB-LINK BL-X26是中国必联（LB-LINK）公司的一款无线路由器。 LB-LINK BL-X26 1.2.8版本存在安全漏洞，该漏洞源于对文件/goform/set_hidessid_cfg中参数enable的错误操作导致os命令注入。

Description (English)

LB-LINK BL-X26 is a non-wire router of the Federation of China (LB-LINK). Version 1.2.8 of LB-LINK BL-X26 has a security loophole, which results from an error in the use of the parameter enable in the document/goform/set hidessid cfg, resulting in the injection of the Os command.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

必联

Published

2025-08-28

Last Modified

2026-02-24

References

https://github.com/lin-3-start/lin-cve/blob/main/B-Link%20X26%20V1.2.8-1/B-Link%20X26%20V1.2.8.md#3-poc https://vuldb.com/?submit.636082 https://vuldb.com/?id.321692 https://vuldb.com/?ctiid.321692 https://nvd.nist.gov/vuln/detail/CVE-2025-9579