CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-29063

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via the enable parameter passed to /goform/set_hidessid_cfg is not handled properly.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.3%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.yuque.com/jichujiliangdanwei/vwbq9e/grfgkm2kvk6btwbp
https://www.yuque.com/jichujiliangdanwei/vwbq9e/ux1426h170rhgfn7
https://www.yuque.com/jichujiliangdanwei/vwbq9e/ux1426h170rhgfn7

Products affected by CVE-2025-29063

Lb-Link » Bl-Ac2100 » Version: N/A

cpe:2.3:h:lb-link:bl-ac2100:-
Lb-Link » Bl-Ac2100 Firmware » Version: Any

cpe:2.3:o:lb-link:bl-ac2100_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-29063

Products

Pricing

Contact Us