9.1

CVSS3.1

CVE-2024-37186 -

An os command injection vulnerability exists in the adm.cgi set_ledonoff() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Aug. 21, 2025, 8:38 p.m.

9.1

CVSS3.1

CVE-2024-39783 -

Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command โ€ฆ

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Nov. 3, 2025, 10:17 p.m.

9.1

CVSS3.1

CVE-2024-39782 -

Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command โ€ฆ

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Nov. 3, 2025, 10:17 p.m.

9.1

CVSS3.1

CVE-2024-39781 -

Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command โ€ฆ

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Nov. 3, 2025, 10:17 p.m.

10

CVSS3.1

CVE-2024-39754 -

A static login vulnerability exists in the wctrls functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted set of network packets can lead to root access. An attacker can send packets to trigger this vulnerability.

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Aug. 21, 2025, 8:38 p.m.

5.3

CVSS3.1

CVE-2024-39773 -

An information disclosure vulnerability exists in the testsave.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability.

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Aug. 22, 2025, 2:04 p.m.

10

CVSS3.1

CVE-2024-39608 -

A firmware update vulnerability exists in the login.cgi functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary firmware update. An attacker can send an unauthenticated message to trigger this vulnerability.

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Aug. 21, 2025, 8:38 p.m.

9

CVSS3.1

CVE-2024-39273 -

A firmware update vulnerability exists in the fw_check.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary firmware update. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Aug. 21, 2025, 6:43 p.m.

9

CVSS3.1

CVE-2024-39604 -

A command execution vulnerability exists in the update_filter_url.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Aug. 21, 2025, 8:38 p.m.

9.1

CVSS3.1

CVE-2024-39357 -

A stack-based buffer overflow vulnerability exists in the wireless.cgi SetName() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.

๐Ÿ“… Published: Jan. 14, 2025, 2:21 p.m. ๐Ÿ”„ Last Modified: Aug. 21, 2025, 6:07 p.m.
Total resulsts: 343923
Page 6617 of 34,393
ยซ previous page ยป next page
Filters