Отправить #608010: Blink BL-AX5400P V1.0.19、BL-AX1800 V1.0.19、BL-AC3600 V1.0.22、BL-WR9000 V2.4.9、BL-AC1900 V1.0.2、BL-AC2100_AZ3 V1.0.4 BL-AX5400P V1.0.19、BL-AX1800 V1.0.19、BL-AC3600 V1.0.22、BL-WR9000 V2.4.9、BL-AC1900 V1.0.2、BL-AC2100_AZ3 V1.0.4 InformatiИнформация

Название	Blink BL-AX5400P V1.0.19、BL-AX1800 V1.0.19、BL-AC3600 V1.0.22、BL-WR9000 V2.4.9、BL-AC1900 V1.0.2、BL-AC2100_AZ3 V1.0.4 BL-AX5400P V1.0.19、BL-AX1800 V1.0.19、BL-AC3600 V1.0.22、BL-WR9000 V2.4.9、BL-AC1900 V1.0.2、BL-AC2100_AZ3 V1.0.4 Informati
Описание	Multiple B-LINK routers contain a severe information disclosure vulnerability in the bs_GetManPwd function within the libblinkapi.so shared library. When processing getmanpwd requests, this function directly returns the administrator's username and password in plaintext to the client without requiring authentication.
Источник	⚠️ https://github.com/waiwai24/0101/blob/main/CVEs/Blink/Web_Interface_Login_Credential_Disclosure_Risk_in_Various_Blink_Router_Models.md
Пользователь	waiwai24 (UID 81637)
Представление	02.07.2025 19:21 (12 месяцы назад)
Модерация	13.07.2025 09:16 (11 days later)
Статус	принято
Запись VulDB	316271 [LB-LINK BL-WR9000 до 20250702 /cgi-bin/lighttpd.cgi bs_GetManPwd раскрытие информации]
Баллы	19

Might our Artificial Intelligence support you?

Check our Alexa App!