Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wavlink vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-12126
Multiple authentication bypass vulnerabilities in the /cgi-bin/ endpoint of the WAVLINK WN530H4 M30H4.V5030.190403 allow an malicious user to leak router settings, change configuration variables, and cause denial of service via an unauthenticated endpoint.
Wavlink Wn530h4 Firmware M30h4.v5030.190403
7.5
CVSSv3
CVE-2020-12127
An information disclosure vulnerability in the /cgi-bin/ExportAllSettings.sh endpoint of the WAVLINK WN530H4 M30H4.V5030.190403 allows an malicious user to leak router settings, including cleartext login details, DNS settings, and other sensitive information without authenticatio...
Wavlink Wn530h4 Firmware M30h4.v5030.190403
7.5
CVSSv3
CVE-2023-29708
An issue exists in /cgi-bin/adm.cgi in WavLink WavRouter version RPT70HA1.x, allows malicious users to force a factory reset via crafted payload.
Wavlink Wavrouter App Rpt70ha1.x
9.8
CVSSv3
CVE-2022-34045
Wavlink WN530HG4 M30HG4.V5030.191116 exists to contain a hardcoded encryption/decryption key for its configuration files at /etc_ro/lighttpd/www/cgi-bin/ExportAllSettings.sh.
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
7.5
CVSSv3
CVE-2022-34047
An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows malicious users to obtain usernames and passwords via view-source:http://IP_ADDRESS/set_safety.shtml?r=52300 and searching for [var syspasswd].
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
5.3
CVSSv3
CVE-2022-34049
An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows unauthenticated malicious users to download log files and configuration data.
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.191116
7.5
CVSSv3
CVE-2022-48164
An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN533A8 M33A8.V5030.190716 allows unauthenticated malicious users to download configuration data and log files and obtain admin credentials.
Wavlink Wl-wn533a8 Firmware M33a8.v5030.190716
7.5
CVSSv3
CVE-2022-48165
An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN530H4 M30H4.V5030.210121 allows unauthenticated malicious users to download configuration data and log files and obtain admin credentials.
Wavlink Wl-wn530h4 Firmware M30h4.v5030.210121
7.5
CVSSv3
CVE-2022-48166
An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated malicious users to download configuration data and log files and obtain admin credentials.
Wavlink Wl-wn530hg4 Firmware M30hg4.v5030.201217
7.5
CVSSv3
CVE-2022-34570
WAVLINK WN579 X3 M79X3.V5030.191012/M79X3.V5030.191012 contains an information leak which allows malicious users to obtain the key information via accessing the messages.txt page.
Wavlink Wl-wn579x3 Firmware M79x3.v5030.191012
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »