WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameters: ppp_username, ppp_passwd, rwan_gateway, rwan_mask and rwan_ip, which leads to command injection in page /wan.shtml.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HWavlink Wn530h4
HWWavlinkwszystkie wersjeWavlink Wn530h4 Firmware
OSWavlinkwszystkie wersjeWavlink Wn531p3
HWWavlinkwszystkie wersjeWavlink Wn531p3 Firmware
OSWavlinkwszystkie wersjeWavlink Wn533a8
HWWavlinkwszystkie wersjeWavlink Wn533a8 Firmware
OSWavlinkwszystkie wersjeWavlink Wn535g3
HWWavlinkwszystkie wersjeWavlink Wn535g3 Firmware
OSWavlinkwszystkie wersjeWavlink Wn572hp3
HWWavlinkwszystkie wersjeWavlink Wn572hp3 Firmware
OSWavlinkwszystkie wersje
π΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2024-54747CRITICAL9.8PL βten sam produkt
Zakodowane na staΕe hasΕo root w firmware Wavlink WN531P3
CVE-2022-35521CRITICAL9.8ten sam produkt
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameters: remoteManage...
CVE-2022-35518CRITICAL9.8ten sam produkt
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 nas.cgi has no filtering on parameters: User1Passwd and U...
CVE-2022-35519CRITICAL9.8ten sam produkt
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameter add_mac, which...
CVE-2022-35520CRITICAL9.8ten sam produkt
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 api.cgi has no filtering on parameter ufconf, and this is...