GCVE - cpe:2.3:h:lb-link:bl-ac2100:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:lb-link:bl-ac2100:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Lb Link (`c4849bfd-1224-5f4c-8b14-44a0ede55748`)
Product	Bl Ac2100 (`27cc2f71-30ed-57a4-8e22-333a0cfadd48`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-29063`	not_vulnerable	2026-06-03 15:00:14.179189	Details available An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly. Published: 2025-04-02T00:00:00.000Z Updated: 2025-04-03T15:14:55.687Z Open on db.gcve.eu Reference links https://www.yuque.com/jichujiliangdanwei/vwbq9e/ux1426h170rhgfn7 https://www.yuque.com/jichujiliangdanwei/vwbq9e/grfgkm2kvk6btwbp	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-29062`	not_vulnerable	2026-06-03 15:00:14.178776	Details available An issue in BL-AC2100 <=V1.0.4 allows a remote attacker to execute arbitrary code via the time1 and time2 parameters in the set_LimitClient_cfg of the goahead webservice. Published: 2025-04-02T00:00:00.000Z Updated: 2025-04-03T15:16:02.551Z Open on db.gcve.eu Reference links https://www.yuque.com/jichujiliangdanwei/vwbq9e/ux1426h170rhgfn7 https://www.yuque.com/jichujiliangdanwei/vwbq9e/grfgkm2kvk6btwbp	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-10773`	not_vulnerable	2026-06-03 14:58:34.768265	B-Link BL-AC2100 Web Management set_delshrpath_cfg delshrpath stack-based overflow HIGH (8.8) A security flaw has been discovered in B-Link BL-AC2100 up to 1.0.3. Affected by this issue is the function delshrpath of the file /goform/set_delshrpath_cfg of the component Web Management Interface. The manipulation of the argument Type results in stack-based buffer overflow. The attack may be performed from remote. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way. Published: 2025-09-22T00:02:07.094Z Updated: 2025-09-30T17:16:38.944Z Open on db.gcve.eu Reference links https://vuldb.com/?id.325129 https://vuldb.com/?ctiid.325129 https://vuldb.com/?submit.649901 https://github.com/maximdevere/CVE2/blob/main/README.md	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.