CVE-2024-39784 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir disk_part injection (TALOS-2024-2058)

CVE-2024-39784 | Wavlink AC3000 M33A8.V5030.210505 nas.cgi add_dir disk_part injection (TALOS-2024-2058)

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been declared as critical. Affected by this vulnerability is the function add_dir of the file nas.cgi. The manipulation of the argument disk_part leads to injection. This vulnerability is known as CVE-2024-39784. The attack can be launched remotely. There is no exploit available.