An issue in BL-AC2100 <=V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the set_LimitClient_cfg of the goahead webservice.
The command injection vulnerability (CWE-77) occurs in the web service based on the GoAhead server. An attacker can pass malicious data in the time1 and time2 parameters of the set_LimitClient_cfg function call, which are then processed without proper validation and sanitization. This enables injection and execution of arbitrary system commands in the context of the running service.
An attacker can remotely gain full control over the device by executing arbitrary code without authentication. As a result, it is possible to compromise the confidentiality, integrity, and availability of the system and the entire supported network.
Security patches available from the manufacturer should be applied in accordance with the references. As a temporary measure, it is recommended to restrict access to the administrative interface only to trusted local networks and to block access from the Internet using a firewall.
LB-Link BL-AC2100 with firmware version V1.0.4 and earlier
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HLb Link Bl Ac2100
HWLb-Linkwszystkie wersjeLb Link Bl Ac2100 Firmware
OSLb-Link≤ 1.0.4
Related vulnerabilities
RCE w LB-Link BL-AC2100 — nieprawidłowa obsługa parametru enable
A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function de...
Zakodowane na stałe dane uwierzytelniające w routerze LB-LINK BL-WR1300H
LB-LINK BL-W1210M — przechowywanie danych uwierzytelniających w postaci jawnej
LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 we...