Yearly Archives: 2025

CVE-2024-39800 | Wavlink AC3000 M33A8.V5030.210505 openvpn.cgi openvpn_server_setup open_port external control of system or configuration setting (TALOS-2024-2050)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. Affected by this issue is the function openvpn_server_setup of the file openvpn.cgi. The manipulation of the argument open_port leads to external control of syst…

CVE-2024-39790 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_ftp_cfg ftp_max_sessions external control of system or configuration setting (TALOS-2024-2056)

A vulnerability has been found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. Affected by this vulnerability is the function set_ftp_cfg of the file nas.cgi. The manipulation of the argument ftp_max_sessions leads to external control …

CVE-2024-39798 | Wavlink AC3000 M33A8.V5030.210505 openvpn.cgi openvpn_server_setup sel_open_protocol external control of system or configuration setting (TALOS-2024-2050)

A vulnerability, which was classified as critical, was found in Wavlink AC3000 M33A8.V5030.210505. Affected is the function openvpn_server_setup of the file openvpn.cgi. The manipulation of the argument sel_open_protocol leads to external control of sy…

CVE-2024-39794 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_nas ftp_port external control of system or configuration setting (TALOS-2024-2053)

A vulnerability, which was classified as critical, has been found in Wavlink AC3000 M33A8.V5030.210505. This issue affects the function set_nas of the file nas.cgi. The manipulation of the argument ftp_port leads to external control of system or config…

CVE-2024-39795 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_nas ftp_max_sessions external control of system or configuration setting (TALOS-2024-2053)

A vulnerability classified as critical was found in Wavlink AC3000 M33A8.V5030.210505. This vulnerability affects the function set_nas of the file nas.cgi. The manipulation of the argument ftp_max_sessions leads to external control of system or configu…

CVE-2024-39789 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_ftp_cfg ftp_port external control of system or configuration setting (TALOS-2024-2056)

A vulnerability classified as critical has been found in Wavlink AC3000 M33A8.V5030.210505. This affects the function set_ftp_cfg of the file nas.cgi. The manipulation of the argument ftp_port leads to external control of system or configuration settin…

CVE-2024-39786 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir adddir_name path traversal (TALOS-2024-2057)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been rated as critical. Affected by this issue is the function add_dir of the file nas.cgi. The manipulation of the argument adddir_name leads to path traversal.

This vulnerability…

CVE-2024-39784 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir disk_part injection (TALOS-2024-2058)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been declared as critical. Affected by this vulnerability is the function add_dir of the file nas.cgi. The manipulation of the argument disk_part leads to injection.

This vulnerabi…

CVE-2024-39774 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi set_sys_adm buffer overflow (TALOS-2024-2030)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been classified as critical. Affected is the function set_sys_adm of the file adm.cgi. The manipulation leads to buffer overflow.

This vulnerability is traded as CVE-2024-39774. It…

CVE-2024-39770 | Wavlink AC3000 M33A8.V5030.210505 internet.cgi set_qos en_enable buffer overflow (TALOS-2024-2022)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. This issue affects the function set_qos of the file internet.cgi. The manipulation of the argument en_enable leads to buffer overflow.

The identification of thi…