Wavlink

Wl-wn533a8 Firmware

62 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2024-39789

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:24
  • Zuletzt bearbeitet 03.11.2025 22:17:09

Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request...

7.2

CVE-2024-39788

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:24
  • Zuletzt bearbeitet 03.11.2025 22:17:09

Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request...

7.2

CVE-2024-39785

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:23
  • Zuletzt bearbeitet 03.11.2025 22:17:09

Multiple command execution vulnerabilities exist in the nas.cgi add_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request...

7.2

CVE-2024-39782

Exploit
  • EPSS 1.18%
  • Veröffentlicht 14.01.2025 15:15:23
  • Zuletzt bearbeitet 03.11.2025 22:17:08

Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP re...

7.2

CVE-2024-39783

Exploit
  • EPSS 1.18%
  • Veröffentlicht 14.01.2025 15:15:23
  • Zuletzt bearbeitet 03.11.2025 22:17:08

Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP re...

7.2

CVE-2024-39784

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:23
  • Zuletzt bearbeitet 03.11.2025 22:17:08

Multiple command execution vulnerabilities exist in the nas.cgi add_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request...

7.2

CVE-2024-39786

Exploit
  • EPSS 0.54%
  • Veröffentlicht 14.01.2025 15:15:23
  • Zuletzt bearbeitet 03.11.2025 22:17:09

Multiple directory traversal vulnerabilities exist in the nas.cgi add_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trig...

7.2

CVE-2024-39787

Exploit
  • EPSS 0.54%
  • Veröffentlicht 14.01.2025 15:15:23
  • Zuletzt bearbeitet 03.11.2025 22:17:09

Multiple directory traversal vulnerabilities exist in the nas.cgi add_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trig...

7.2

CVE-2024-39781

Exploit
  • EPSS 1.18%
  • Veröffentlicht 14.01.2025 15:15:22
  • Zuletzt bearbeitet 03.11.2025 22:17:08

Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP re...

7.2

CVE-2024-39774

Exploit
  • EPSS 0.48%
  • Veröffentlicht 14.01.2025 15:15:22
  • Zuletzt bearbeitet 22.08.2025 14:04:23

A buffer overflow vulnerability exists in the adm.cgi set_sys_adm() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to tr...