Wavlink

Wl-wn533a8 Firmware

62 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2024-39773

Exploit
  • EPSS 0.08%
  • Veröffentlicht 14.01.2025 15:15:22
  • Zuletzt bearbeitet 22.08.2025 14:04:55

An information disclosure vulnerability exists in the testsave.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger ...

7.2

CVE-2024-39770

Exploit
  • EPSS 0.25%
  • Veröffentlicht 14.01.2025 15:15:22
  • Zuletzt bearbeitet 03.11.2025 22:17:08

Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP requ...

7.2

CVE-2024-39769

Exploit
  • EPSS 0.25%
  • Veröffentlicht 14.01.2025 15:15:22
  • Zuletzt bearbeitet 03.11.2025 22:17:08

Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP requ...

7.2

CVE-2024-39768

Exploit
  • EPSS 0.25%
  • Veröffentlicht 14.01.2025 15:15:22
  • Zuletzt bearbeitet 03.11.2025 22:17:08

Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP requ...

9.8

CVE-2024-39759

Exploit
  • EPSS 2.4%
  • Veröffentlicht 14.01.2025 15:15:21
  • Zuletzt bearbeitet 03.11.2025 22:17:07

Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an unauthenticated HTT...

7.2

CVE-2024-39765

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:21
  • Zuletzt bearbeitet 03.11.2025 22:17:07

Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authentica...

7.2

CVE-2024-39764

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:21
  • Zuletzt bearbeitet 03.11.2025 22:17:07

Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authentica...

7.2

CVE-2024-39763

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:21
  • Zuletzt bearbeitet 03.11.2025 22:17:07

Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authentica...

7.2

CVE-2024-39762

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:21
  • Zuletzt bearbeitet 03.11.2025 22:17:07

Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authentica...

9.8

CVE-2024-39761

Exploit
  • EPSS 2.4%
  • Veröffentlicht 14.01.2025 15:15:21
  • Zuletzt bearbeitet 03.11.2025 22:17:07

Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an unauthenticated HTT...