CVE-2024-10429 | WAVLINK WN530H4/WN530HG4/WN572HG3 up to 20221028 internet.cgi set_ipv6 IPv6OpMode/IPv6IPAddr/IPv6WANIPAddr/IPv6GWAddr command injection

Çağlar Arlı - 20 Views

CVE-2024-10429 | WAVLINK WN530H4/WN530HG4/WN572HG3 up to 20221028 internet.cgi set_ipv6 IPv6OpMode/IPv6IPAddr/IPv6WANIPAddr/IPv6GWAddr command injection

A vulnerability classified as critical has been found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. Affected is the function set_ipv6 of the file internet.cgi. The manipulation of the argument IPv6OpMode/IPv6IPAddr/IPv6WANIPAddr/IPv6GWAddr leads to command injection. This vulnerability is traded as CVE-2024-10429. It is possible to launch the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

P	S	Ç	P	C	C	P
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30	31

Annanowa

CVE-2024-10429 | WAVLINK WN530H4/WN530HG4/WN572HG3 up to 20221028 internet.cgi set_ipv6 IPv6OpMode/IPv6IPAddr/IPv6WANIPAddr/IPv6GWAddr command injection

CVE-2024-10429 | WAVLINK WN530H4/WN530HG4/WN572HG3 up to 20221028 internet.cgi set_ipv6 IPv6OpMode/IPv6IPAddr/IPv6WANIPAddr/IPv6GWAddr command injection

Son Yazılar

Son Yorumlar