Daily Archives: Ocak 14, 2025

CVE-2024-39802 | Wavlink AC3000 M33A8.V5030.210505 qos.cgi qos_settings qos_dat buffer overflow (TALOS-2024-2049)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been declared as critical. This vulnerability affects the function qos_settings of the file qos.cgi. The manipulation of the argument qos_dat leads to buffer overflow.

This vulnera…

CVE-2024-39799 | Wavlink AC3000 M33A8.V5030.210505 openvpn.cgi openvpn_server_setup sel_open_interface external control of system or configuration setting (TALOS-2024-2050)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been classified as critical. This affects the function openvpn_server_setup of the file openvpn.cgi. The manipulation of the argument sel_open_interface leads to external control of…

CVE-2024-39800 | Wavlink AC3000 M33A8.V5030.210505 openvpn.cgi openvpn_server_setup open_port external control of system or configuration setting (TALOS-2024-2050)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. Affected by this issue is the function openvpn_server_setup of the file openvpn.cgi. The manipulation of the argument open_port leads to external control of syst…

CVE-2024-39790 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_ftp_cfg ftp_max_sessions external control of system or configuration setting (TALOS-2024-2056)

A vulnerability has been found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. Affected by this vulnerability is the function set_ftp_cfg of the file nas.cgi. The manipulation of the argument ftp_max_sessions leads to external control …

CVE-2024-39798 | Wavlink AC3000 M33A8.V5030.210505 openvpn.cgi openvpn_server_setup sel_open_protocol external control of system or configuration setting (TALOS-2024-2050)

A vulnerability, which was classified as critical, was found in Wavlink AC3000 M33A8.V5030.210505. Affected is the function openvpn_server_setup of the file openvpn.cgi. The manipulation of the argument sel_open_protocol leads to external control of sy…

CVE-2024-39794 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_nas ftp_port external control of system or configuration setting (TALOS-2024-2053)

A vulnerability, which was classified as critical, has been found in Wavlink AC3000 M33A8.V5030.210505. This issue affects the function set_nas of the file nas.cgi. The manipulation of the argument ftp_port leads to external control of system or config…

CVE-2024-39795 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_nas ftp_max_sessions external control of system or configuration setting (TALOS-2024-2053)

A vulnerability classified as critical was found in Wavlink AC3000 M33A8.V5030.210505. This vulnerability affects the function set_nas of the file nas.cgi. The manipulation of the argument ftp_max_sessions leads to external control of system or configu…

CVE-2024-39789 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_ftp_cfg ftp_port external control of system or configuration setting (TALOS-2024-2056)

A vulnerability classified as critical has been found in Wavlink AC3000 M33A8.V5030.210505. This affects the function set_ftp_cfg of the file nas.cgi. The manipulation of the argument ftp_port leads to external control of system or configuration settin…

CVE-2024-39786 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir adddir_name path traversal (TALOS-2024-2057)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been rated as critical. Affected by this issue is the function add_dir of the file nas.cgi. The manipulation of the argument adddir_name leads to path traversal.

This vulnerability…

CVE-2024-39784 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir disk_part injection (TALOS-2024-2058)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been declared as critical. Affected by this vulnerability is the function add_dir of the file nas.cgi. The manipulation of the argument disk_part leads to injection.

This vulnerabi…