Hard-Coded Credentials Vulnerability in LB-LINK BL-AC3600
CVE-2025-7564

8.5HIGH

Key Information:

Vendor: Lb-link
Status: Bl-ac3600
Vendor: CVE Published:; 14 July 2025

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2025-7564?

A vulnerability exists in the LB-LINK BL-AC3600 router, specifically in version 1.0.22, where hard-coded credentials can be accessed through the manipulation of the input 'root:blinkadmin' within the file /etc/shadow. This issue allows local users to exploit the hard-coded credentials, potentially gaining unauthorized access. Despite the public disclosure of this exploit, the vendor has not responded to notifications regarding this security flaw.

Affected Version(s)

BL-AC3600 1.0.22

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-7564 - Proof of Concept

References

https://vuldb.com/?id.316262

vdb-entrytechnical-description

https://vuldb.com/?ctiid.316262

signaturepermissions-required

https://vuldb.com/?submit.605630

third-party-advisory

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jul 14, 2025
👾
Exploit known to exist
Jul 14, 2025
Vulnerability published
Jul 14, 2025
Vulnerability Reserved
Jul 12, 2025

Credit

waiwai24 (VulDB User)

Lb-link

Badges

What is CVE-2025-7564?

Affected Version(s)

Exploit Proof of Concept (PoC)

References

CVSS V4

Timeline

Credit