LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 were discovered to contain a command injection vulnerability via the mac, time1, and time2 parameters at /goform/set_LimitClient_cfg.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lb-link bl-lte300_firmware 1.0.8 |
||
lb-link bl-x26_firmware 1.2.5 |
||
lb-link bl-wr9000_firmware 2.4.9 |
||
lb-link bl-ac1900_firmware 1.0.1 |