Yearly Archives: 2025

CVE-2024-39784 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir disk_part injection (TALOS-2024-2058)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been declared as critical. Affected by this vulnerability is the function add_dir of the file nas.cgi. The manipulation of the argument disk_part leads to injection.

This vulnerabi…

CVE-2024-39774 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi set_sys_adm buffer overflow (TALOS-2024-2030)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been classified as critical. Affected is the function set_sys_adm of the file adm.cgi. The manipulation leads to buffer overflow.

This vulnerability is traded as CVE-2024-39774. It…

CVE-2024-39770 | Wavlink AC3000 M33A8.V5030.210505 internet.cgi set_qos en_enable buffer overflow (TALOS-2024-2022)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. This issue affects the function set_qos of the file internet.cgi. The manipulation of the argument en_enable leads to buffer overflow.

The identification of thi…

CVE-2024-39788 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi set_ftp_cfg ftp_name external control of system or configuration setting (TALOS-2024-2056)

A vulnerability has been found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. This vulnerability affects the function set_ftp_cfg of the file nas.cgi. The manipulation of the argument ftp_name leads to external control of system or co…

CVE-2024-39787 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir disk_part path traversal (TALOS-2024-2057)

A vulnerability, which was classified as critical, was found in Wavlink AC3000 M33A8.V5030.210505. This affects the function add_dir of the file nas.cgi. The manipulation of the argument disk_part leads to path traversal.

This vulnerability is uniquel…

CVE-2024-39785 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir adddir_name injection (TALOS-2024-2058)

A vulnerability, which was classified as critical, has been found in Wavlink AC3000 M33A8.V5030.210505. Affected by this issue is the function add_dir of the file nas.cgi. The manipulation of the argument adddir_name leads to injection.

This vulnerabi…

CVE-2024-39769 | Wavlink AC3000 M33A8.V5030.210505 internet.cgi set_qos cli_mac buffer overflow (TALOS-2024-2022)

A vulnerability classified as critical was found in Wavlink AC3000 M33A8.V5030.210505. Affected by this vulnerability is the function set_qos of the file internet.cgi. The manipulation of the argument cli_mac leads to buffer overflow.

This vulnerabili…

CVE-2024-39768 | Wavlink AC3000 M33A8.V5030.210505 internet.cgi set_qos cli_name buffer overflow (TALOS-2024-2022)

A vulnerability classified as critical has been found in Wavlink AC3000 M33A8.V5030.210505. Affected is the function set_qos of the file internet.cgi. The manipulation of the argument cli_name leads to buffer overflow.

This vulnerability is traded as …

CVE-2024-39765 | Wavlink AC3000 M33A8.V5030.210505 internet.cgi set_add_routing custom_interface command injection (TALOS-2024-2020)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been rated as critical. This issue affects the function set_add_routing of the file internet.cgi. The manipulation of the argument custom_interface leads to command injection.

The …