Primary

Context

LB-LINK BL-AC3600 Web Management Interface Password Information Disclosure Vulnerability

Vulnerability

A critical vulnerability has been identified in the LB-LINK BL-AC3600 router, affecting versions through 1.0.22. The issue resides in the Web Management Interface, specifically within the function 'geteasycfg' of the file '/cgi-bin/lighttpd.cgi'. This vulnerability allows for the unauthorized disclosure of plaintext admin passwords. The exploitation can be initiated remotely, without the need for authentication.

Impact

Exploitation of this vulnerability allows attackers to obtain the admin password in plaintext, potentially leading to full control over the affected device.

Reproduction

To reproduce this vulnerability, send an HTTP request to the '/cgi-bin/lighttpd.cgi' endpoint with the 'type' parameter set to 'geteasycfg'. The response will include the admin password in plaintext.

Remediation

It is recommended to apply restrictive firewalling to mitigate this vulnerability.

Added: Jul 14, 2025, 4:28 AM

Updated: Jul 14, 2025, 4:28 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.7

remediation

0.0

relevance

0.2

threat

6.4

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.7

remediation

0.0

relevance

0.2

threat

6.4

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

LB-LINK BL-AC3600 Web Management Interface Password Information Disclosure Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating