Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 26/03/2023 Updated: 03/04/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 were discovered to contain a command injection vulnerability via the mac, time1, and time2 parameters at /goform/set_LimitClient_cfg.

Vulnerable Product	Search on Vulmon	Subscribe to Product
lb-link bl-lte300_firmware 1.0.8
lb-link bl-x26_firmware 1.2.5
lb-link bl-wr9000_firmware 2.4.9
lb-link bl-ac1900_firmware 1.0.1

CWE-77 https://github.com/winmt/my-vuls/tree/main/LB-LINK%20BL-AC1900%2C%20BL-WR9000%2C%20BL-X26%20and%20BL-LTE300%20Wireless%20Routers https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-26801

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect