Gaurav Choudhari

**Name of the Vulnerable Software and Affected Versions** LB-LINK BL-W1210M version 2.0 **Description** An issue in the LB-LINK BL-W1210M router allows attackers to bypass password complexity requirements and set single digit passwords for authentication. This can allow attackers to access the router via a brute-force attack. **Recommendations** For LB-LINK BL-W1210M version 2.0, consider changing the password to a complex one as soon as possible to minimize the risk of exploitation. As a temporary workaround, restrict access to the router's authentication interface until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LB-LINK BL-W1210M version 2.0 **Description** The issue is related to incorrect access control in the UART/Serial interface, allowing attackers to access the root terminal without authentication. This enables unauthorized access to the system. **Recommendations** For LB-LINK BL-W1210M version 2.0, restrict access to the UART/Serial interface to minimize the risk of exploitation. As a temporary workaround, consider disabling the UART/Serial interface until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netgear WNR614 version 1.1.0.54 1.0.1 **Description** The issue is related to weaknesses in the authentication procedure of the Netgear WNR614 N300 Wi-Fi router. This allows attackers to bypass authentication and access the administrative interface, potentially enabling them to create arbitrary passwords. The exploitation can be done remotely. **Recommendations** For version 1.1.0.54 1.0.1, as a temporary workaround, consider restricting access to the administrative interface until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.