CVE-2024-39800 | Wavlink AC3000 M33A8.V5030.210505 openvpn.cgi openvpn_server_setup open_port external control of system or configuration setting (TALOS-2024-2050)

CVE-2024-39800 | Wavlink AC3000 M33A8.V5030.210505 openvpn.cgi openvpn_server_setup open_port external control of system or configuration setting (TALOS-2024-2050)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505 and classified as critical. Affected by this issue is the function openvpn_server_setup of the file openvpn.cgi. The manipulation of the argument open_port leads to external control of system or configuration setting. This vulnerability is handled as CVE-2024-39800. The attack may be launched remotely. There is no exploit available.