26Eki
CVE-2024-10428 | WAVLINK WN530H4/WN530HG4/WN572HG3 up to 20221028 firewall.cgi set_ipv6 dhcpGateway command injection
A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been rated as critical. This issue affects the functionset_ipv6
of the file firewall.cgi. The manipulation of the argument dhcpGateway leads to command injection.
The identification of this vulnerability is CVE-2024-10428. The attack may be initiated remotely. Furthermore, there is an exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.