CNNVD-202509-1204 Information

CNNVD ID

CNNVD-202509-1204

Related CVE

CVE-2025-57278

• CNNVD Published: 2025-09-09

Description (Chinese)

LB-Link BL-CPE300M AX300 4G LTE Router是中国必联（LB-Link）公司的一款路由器。 LB-Link BL-CPE300M AX300 4G LTE Router存在安全漏洞，该漏洞源于会话处理不当，可能导致身份验证绕过。

Description (English)

LB-Link BL-CPE300M AX300 4G LTE Router is a router for the company LB-Link. LB-Link BL-CPE300M AX300 4G LTE Router has a security loophole, which stems from inappropriate handling of sessions and may lead to a circumvention of identification.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

必联

Published

2025-09-09

Last Modified

2026-02-24

References

https://www.zyenra.com/blog/improper-ip-bound-session-authentication-in-lb-link-cpe300m https://www.lb-link.com/CPE300M-AX300-4G-LTE-Router-pd502775568.html https://access.redhat.com/security/cve/cve-2025-57278