CNNVD-202508-3300 Information

CNNVD ID

CNNVD-202508-3300

Related CVE

CVE-2025-9580

• CNNVD Published: 2025-08-28

Description (Chinese)

LB-LINK BL-X26是中国必联（LB-LINK）公司的一款无线路由器。 LB-LINK BL-X26 1.2.8版本存在安全漏洞，该漏洞源于对文件/goform/set_blacklist中参数mac的错误操作导致os命令注入。

Description (English)

LB-LINK BL-X26 is a non-wire router of the Federation of China (LB-LINK). Version 1.2.8 of LB-LINK BL-X26 has a security loophole resulting from an error in the oc command due to the mishandling of paramac in the file/goform/set blacklist.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

必联

Published

2025-08-28

Last Modified

2026-02-24

References

https://github.com/lin-3-start/lin-cve/blob/main/B-Link%20X26%20V1.2.8-2/B-Link%20X26%20V1.2.8.md#3poc https://vuldb.com/?submit.636083 https://vuldb.com/?id.321693 https://vuldb.com/?ctiid.321693 https://nvd.nist.gov/vuln/detail/CVE-2025-9580