CVSS: 6.9EPSS: 0%CPEs: 23EXPL: 1CVE-2025-7565 – LB-LINK BL-AC3600 Web Management Interface lighttpd.cgi geteasycfg information disclosure
https://notcve.org/view.php?id=CVE-2025-7565
14 Jul 2025 — A vulnerability, which was classified as critical, was found in LB-LINK BL-AC3600 up to 1.0.22. This affects the function geteasycfg of the file /cgi-bin/lighttpd.cgi of the component Web Management Interface. The manipulation of the argument Password leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/waiwai24/0101/blob/main/CVEs/Blink/Plaintext_Password_Leakage_in_the_Web_Management_Interface_of_BL-AC3600_Routers.md • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-284: Improper Access Control •
CVSS: 6.5EPSS: 1%CPEs: 23EXPL: 2CVE-2025-4076 – LB-LINK BL-AC3600 Password lighttpd.cgi easy_uci_set_option_string_0 command injection
https://notcve.org/view.php?id=CVE-2025-4076
29 Apr 2025 — A vulnerability classified as critical has been found in LB-LINK BL-AC3600 up to 1.0.22. This affects the function easy_uci_set_option_string_0 of the file /cgi-bin/lighttpd.cgi of the component Password Handler. The manipulation of the argument routepwd leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://vuldb.com/?id.306513 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •