← Back

Szlbt

szlbt

13 CVEs • 6 products

Products (6)

Click to collapse
Toggle
Lbt T300 T400 Firmware
lbt-t300-t400_firmware
5 CVEs
Lbt T300 T310 Firmware
lbt-t300-t310_firmware
4 CVEs
Lbt T300 Mini1 Firmware
lbt-t300-mini1_firmware
4 CVEs
Lbt T300 T310
lbt-t300-t310
0 CVEs
Lbt T300 Mini1
lbt-t300-mini1
0 CVEs
Lbt T300 T400
lbt-t300-t400
0 CVEs

CVEs (13)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-8019
1Szlbt
1Lbt T300 T310 Firmware
Aug 20, 2025
Jul 22, 2025
7.4 HIGH· v4
8.8 HIGH· v3
9.0 HIGH· v2
A vulnerability was found in Shenzhen Libituo Technology LBT-T300-T310 2.2.3.6. It has been rated as critical. Affected by this issue is the function sub_40B6F0 of the file at/appy.cgi. The manipulation of the argument w...Show more
A vulnerability was found in Shenzhen Libituo Technology LBT-T300-T310 2.2.3.6. It has been rated as critical. Affected by this issue is the function sub_40B6F0 of the file at/appy.cgi. The manipulation of the argument wan_proto leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-7077
1Szlbt
1Lbt T300 T310 Firmware
Aug 20, 2025
Jul 6, 2025
7.4 HIGH· v4
8.8 HIGH· v3
9.0 HIGH· v2
A vulnerability classified as critical has been found in Shenzhen Libituo Technology LBT-T300-T310 up to 2.2.3.6. This affects the function config_3g_para of the file /appy.cgi. The manipulation of the argument username_...Show more
A vulnerability classified as critical has been found in Shenzhen Libituo Technology LBT-T300-T310 up to 2.2.3.6. This affects the function config_3g_para of the file /appy.cgi. The manipulation of the argument username_3g/password_3g leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-29570
1Szlbt
1Lbt T300 T400 Firmware
Aug 20, 2025
Apr 3, 2025
N/A· v4
7.8 HIGH· v3
N/A· v2
An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to escalate privileges via the function tftp_image_check of a binary named rc.
CVE-2024-40536
1Szlbt
1Lbt T300 T400 Firmware
Aug 20, 2025
Jul 16, 2024
N/A· v4
5.3 MEDIUM· v3
N/A· v2
Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 were discovered to contain a stack overflow via the pin_3g_code parameter in the config_3g_para function.
CVE-2024-40535
1Szlbt
1Lbt T300 T400 Firmware
Aug 20, 2025
Jul 16, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered to contain a stack overflow via the apn_name_3g parameter in the config_3g_para function.
CVE-2024-39181
1Szlbt
1Lbt T300 T400 Firmware
Aug 20, 2025
Jul 9, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered to contain a buffer overflow via the ApCliSsid parameter in thegenerate_conf_router() function. This vulnerability allows attackers to cause a Denial...Show more
Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered to contain a buffer overflow via the ApCliSsid parameter in thegenerate_conf_router() function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.Show less
CVE-2024-32324
1Szlbt
1Lbt T300 T400 Firmware
Aug 20, 2025
Apr 25, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
Buffer Overflow vulnerability in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v.3.2 allows a local attacker to execute arbitrary code via the vpn_client_ip variable of the config_vpn_pptp function in rc program.
CVE-2024-29244
1Szlbt
1Lbt T300 Mini1 Firmware
Jun 17, 2025
Mar 21, 2024
N/A· v4
5.3 MEDIUM· v3
N/A· v2
Shenzhen Libituo Technology Co., Ltd LBT-T300-mini v1.2.9 was discovered to contain a buffer overflow via the pin_code_3g parameter at /apply.cgi.
CVE-2024-29243
1Szlbt
1Lbt T300 Mini1 Firmware
Jun 17, 2025
Mar 21, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Shenzhen Libituo Technology Co., Ltd LBT-T300-mini v1.2.9 was discovered to contain a buffer overflow via the vpn_client_ip parameter at /apply.cgi.
CVE-2024-28447
1Szlbt
1Lbt T300 Mini1 Firmware
Aug 21, 2025
Mar 19, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Shenzhen Libituo Technology Co., Ltd LBT-T300-mini1 v1.2.9 was discovered to contain a buffer overflow via lan_ipaddr parameters at /apply.cgi.
CVE-2024-28446
1Szlbt
1Lbt T300 Mini1 Firmware
Aug 20, 2025
Mar 19, 2024
N/A· v4
5.7 MEDIUM· v3
N/A· v2
Shenzhen Libituo Technology Co., Ltd LBT-T300-mini1 v1.2.9 was discovered to contain a buffer overflow via lan_netmask parameter at /apply.cgi.
CVE-2023-50469
1Szlbt
1Lbt T300 T310 Firmware
Nov 21, 2024
Dec 15, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Shenzhen Libituo Technology Co., Ltd LBT-T300-T310 v2.2.2.6 was discovered to contain a buffer overflow via the ApCliEncrypType parameter at /apply.cgi.
CVE-2023-47307
1Szlbt
1Lbt T300 T310 Firmware
Nov 21, 2024
Nov 30, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
Buffer Overflow vulnerability in /apply.cgi in Shenzhen Libituo Technology Co., Ltd LBT-T300-T310 v2.2.2.6 allows attackers to cause a denial of service via the ApCliAuthMode parameter.