Wavlink

Wl-wn533a8 Firmware

62 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2024-37357

Exploit
  • EPSS 0.68%
  • Veröffentlicht 14.01.2025 15:15:17
  • Zuletzt bearbeitet 21.08.2025 20:38:48

A buffer overflow vulnerability exists in the adm.cgi set_TR069() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trig...

7.2

CVE-2024-37186

Exploit
  • EPSS 2.03%
  • Veröffentlicht 14.01.2025 15:15:17
  • Zuletzt bearbeitet 21.08.2025 20:38:56

An os command injection vulnerability exists in the adm.cgi set_ledonoff() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an authenticated HTTP request t...

7.2

CVE-2024-37184

Exploit
  • EPSS 0.48%
  • Veröffentlicht 14.01.2025 15:15:17
  • Zuletzt bearbeitet 21.08.2025 20:39:04

A buffer overflow vulnerability exists in the adm.cgi rep_as_bridge() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to ...

7.2

CVE-2024-36493

Exploit
  • EPSS 1.36%
  • Veröffentlicht 14.01.2025 15:15:16
  • Zuletzt bearbeitet 21.08.2025 20:39:13

A stack-based buffer overflow vulnerability exists in the wireless.cgi set_wifi_basic() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticate...

7.2

CVE-2024-36295

Exploit
  • EPSS 2.74%
  • Veröffentlicht 14.01.2025 15:15:16
  • Zuletzt bearbeitet 21.08.2025 20:39:23

A command execution vulnerability exists in the qos.cgi qos_sta() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trig...

9.8

CVE-2024-36290

Exploit
  • EPSS 0.68%
  • Veröffentlicht 14.01.2025 15:15:16
  • Zuletzt bearbeitet 21.08.2025 18:49:18

A buffer overflow vulnerability exists in the login.cgi Goto_chidx() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an unauthenticated HTTP request to...

7.2

CVE-2024-36272

Exploit
  • EPSS 0.48%
  • Veröffentlicht 14.01.2025 15:15:16
  • Zuletzt bearbeitet 21.08.2025 18:49:06

A buffer overflow vulnerability exists in the usbip.cgi set_info() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to tri...

9.8

CVE-2024-36258

Exploit
  • EPSS 2.59%
  • Veröffentlicht 14.01.2025 15:15:16
  • Zuletzt bearbeitet 21.08.2025 18:45:37

A stack-based buffer overflow vulnerability exists in the touchlist_sync.cgi touchlistsync() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send an HTTP reque...

7.2

CVE-2024-34544

Exploit
  • EPSS 1.42%
  • Veröffentlicht 14.01.2025 15:15:15
  • Zuletzt bearbeitet 21.08.2025 18:46:08

A command injection vulnerability exists in the wireless.cgi AddMac() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to ...

9.8

CVE-2024-34166

Exploit
  • EPSS 4.68%
  • Veröffentlicht 14.01.2025 15:15:15
  • Zuletzt bearbeitet 21.08.2025 18:46:34

An os command injection vulnerability exists in the touchlist_sync.cgi touchlistsync() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted set of HTTP requests can lead to arbitrary code execution. An attacker can send an HTTP req...