Wavlink

Wl-wn533a8 Firmware

62 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2024-39360

Exploit
  • EPSS 1.3%
  • Veröffentlicht 14.01.2025 15:15:19
  • Zuletzt bearbeitet 21.08.2025 17:57:37

An os command injection vulnerability exists in the nas.cgi remove_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an authenticated HTTP request to ...

7.2

CVE-2024-39359

Exploit
  • EPSS 1.36%
  • Veröffentlicht 14.01.2025 15:15:19
  • Zuletzt bearbeitet 21.08.2025 18:01:30

A stack-based buffer overflow vulnerability exists in the wireless.cgi DeleteMac() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTT...

7.2

CVE-2024-39358

Exploit
  • EPSS 0.48%
  • Veröffentlicht 14.01.2025 15:15:19
  • Zuletzt bearbeitet 21.08.2025 18:08:43

A buffer overflow vulnerability exists in the adm.cgi set_wzap() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trigg...

7.2

CVE-2024-39294

Exploit
  • EPSS 0.48%
  • Veröffentlicht 14.01.2025 15:15:18
  • Zuletzt bearbeitet 21.08.2025 18:42:35

A buffer overflow vulnerability exists in the adm.cgi set_wzdgw4G() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to tr...

8.1

CVE-2024-39273

Exploit
  • EPSS 0.09%
  • Veröffentlicht 14.01.2025 15:15:18
  • Zuletzt bearbeitet 21.08.2025 18:43:15

A firmware update vulnerability exists in the fw_check.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary firmware update. An attacker can perform a man-in-the-middle attack to trigger this v...

9.1

CVE-2024-39280

Exploit
  • EPSS 1.75%
  • Veröffentlicht 14.01.2025 15:15:18
  • Zuletzt bearbeitet 21.08.2025 18:43:04

An external config control vulnerability exists in the nas.cgi set_smb_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP requ...

7.2

CVE-2024-39288

Exploit
  • EPSS 0.68%
  • Veröffentlicht 14.01.2025 15:15:18
  • Zuletzt bearbeitet 21.08.2025 18:42:43

A buffer overflow vulnerability exists in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP requ...

7.2

CVE-2024-39299

Exploit
  • EPSS 0.48%
  • Veröffentlicht 14.01.2025 15:15:18
  • Zuletzt bearbeitet 21.08.2025 18:42:26

A buffer overflow vulnerability exists in the qos.cgi qos_sta_settings() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request ...

7.2

CVE-2024-39357

Exploit
  • EPSS 1.36%
  • Veröffentlicht 14.01.2025 15:15:18
  • Zuletzt bearbeitet 21.08.2025 18:07:12

A stack-based buffer overflow vulnerability exists in the wireless.cgi SetName() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP ...

9.1

CVE-2024-38666

Exploit
  • EPSS 1.75%
  • Veröffentlicht 14.01.2025 15:15:17
  • Zuletzt bearbeitet 21.08.2025 18:45:23

An external config control vulnerability exists in the openvpn.cgi openvpn_client_setup() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authentica...