Monthly Archives: Ocak 2025

CVE-2024-39357 | Wavlink AC3000 M33A8.V5030.210505 wireless.cgi SetName stack-based overflow (TALOS-2024-2039)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. This issue affects the function SetName of the file wireless.cgi. The manipulation leads to stack-based buffer overflow.

The identification of this vulnerabilit…

CVE-2024-39273 | Wavlink AC3000 M33A8.V5030.210505 fw_check.sh missing authentication (TALOS-2024-2037)

A vulnerability has been found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. This vulnerability affects unknown code of the file fw_check.sh. The manipulation leads to missing authentication.

This vulnerability was named CVE-2024-39…

CVE-2024-39358 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi set_wzap buffer overflow (TALOS-2024-2027)

A vulnerability, which was classified as critical, was found in Wavlink AC3000 M33A8.V5030.210505. This affects the function set_wzap of the file adm.cgi. The manipulation leads to buffer overflow.

This vulnerability is uniquely identified as CVE-2024…

CVE-2024-37357 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi set_TR069 buffer overflow (TALOS-2024-2029)

A vulnerability, which was classified as critical, has been found in Wavlink AC3000 M33A8.V5030.210505. Affected by this issue is the function set_TR069 of the file adm.cgi. The manipulation leads to buffer overflow.

This vulnerability is handled as C…

CVE-2024-39294 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi set_wzdgw4G buffer overflow (TALOS-2024-2026)

A vulnerability classified as critical has been found in Wavlink AC3000 M33A8.V5030.210505. Affected is the function set_wzdgw4G of the file adm.cgi. The manipulation leads to buffer overflow.

This vulnerability is traded as CVE-2024-39294. It is poss…

CVE-2024-39299 | Wavlink AC3000 M33A8.V5030.210505 qos.cgi qos_sta_settings buffer overflow (TALOS-2024-2048)

A vulnerability classified as critical was found in Wavlink AC3000 M33A8.V5030.210505. Affected by this vulnerability is the function qos_sta_settings of the file qos.cgi. The manipulation leads to buffer overflow.

This vulnerability is known as CVE-2…

CVE-2024-38666 | Wavlink AC3000 M33A8.V5030.210505 openvpn.cgi openvpn_client_setup external control of system or configuration setting (TALOS-2024-2051)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been rated as critical. This issue affects the function openvpn_client_setup of the file openvpn.cgi. The manipulation leads to external control of system or configuration setting.
…

CVE-2024-39280 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_smb_cfg external control of system or configuration setting (TALOS-2024-2055)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been declared as critical. This vulnerability affects the function set_smb_cfg of the file nas.cgi. The manipulation leads to external control of system or configuration setting.

T…

CVE-2024-37184 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi rep_as_bridge buffer overflow (TALOS-2024-2025)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been classified as critical. This affects the function rep_as_bridge of the file adm.cgi. The manipulation leads to buffer overflow.

This vulnerability is uniquely identified as CV…

CVE-2024-34544 | Wavlink AC3000 M33A8.V5030.210505 wireless.cgi AddMac injection (TALOS-2024-2044)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. Affected by this issue is the function AddMac of the file wireless.cgi. The manipulation leads to injection.

This vulnerability is handled as CVE-2024-34544. Th…