Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wavlink wl-wn530hg4 firmware m30hg4.v5030.191116 vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-34049
An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows unauthenticated malicious users to download log files and configuration data.
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
7.5
CVSSv3
CVE-2022-34047
An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows malicious users to obtain usernames and passwords via view-source:http://IP_ADDRESS/set_safety.shtml?r=52300 and searching for [var syspasswd].
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
9.8
CVSSv3
CVE-2020-15489
An issue exists on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple shell metacharacter injection vulnerabilities exist in CGI scripts, leading to remote code execution with root privileges.
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
9.8
CVSSv3
CVE-2020-15490
An issue exists on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple buffer overflow vulnerabilities exist in CGI scripts, leading to remote code execution with root privileges. (The set of affected scripts is similar to CVE-2020-12266.)
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
9.8
CVSSv3
CVE-2022-34045
Wavlink WN530HG4 M30HG4.V5030.191116 exists to contain a hardcoded encryption/decryption key for its configuration files at /etc_ro/lighttpd/www/cgi-bin/ExportAllSettings.sh.
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
8.8
CVSSv3
CVE-2020-10971
An issue exists on Wavlink Jetstream devices where a crafted POST request can be sent to adm.cgi that will result in the execution of the supplied command if there is an active session at the same time. The POST request itself is not validated to ensure it came from the active se...
Wavlink Wl-wn575a3 Firmware Rpt75a3.v4300.180801
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
Wavlink Wl-wn579g3 Firmware M79x3.v5030.180719
1 Github repository
7.5
CVSSv3
CVE-2020-12266
An issue exists where there are multiple externally accessible pages that do not require any sort of authentication, and store system information for internal usage. The devices automatically query these pages to update dashboards and other statistics, but the pages can be access...
Wavlink Wl-wn579g3 Firmware M79x3.v5030.180719
Wavlink Wl-wn575a3 Firmware Rpt75a3.v4300.180801
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
Wavlink Wn531g3 Firmware -
Wavlink Wn533a8 Firmware -
Wavlink Wn531a6 Firmware -
Wavlink Wn551k1 Firmware -
Wavlink Wn535g3 Firmware -
Wavlink Wn530h4 Firmware -
Wavlink Wn57x93 Firmware -
Wavlink Wn578a2 Firmware -
Wavlink Wn579g3 Firmware -
Wavlink Wn579x3 Firmware -
Wavlink Jetstream Ac3000 Firmware -
Wavlink Jetstream Erac3000 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started