Wavlink Wl-Wn533A8 Firmware vulnerabilities
63 known vulnerabilities affecting wavlink/wl-wn533a8_firmware.
Total CVEs
63
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL11HIGH50MEDIUM2
Vulnerabilities
Page 4 of 4
CVE-2024-37184P3HIGHCVSS 7.2vm33a8.v5030.2105052025-01-14
CVE-2024-37184 [HIGH] CWE-120 CVE-2024-37184: A buffer overflow vulnerability exists in the adm.cgi rep_as_bridge() functionality of Wavlink AC300
A buffer overflow vulnerability exists in the adm.cgi rep_as_bridge() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trigger this vulnerability.
nvd
CVE-2024-39774P3HIGHCVSS 7.2vm33a8.v5030.2105052025-01-14
CVE-2024-39774 [HIGH] CWE-120 CVE-2024-39774: A buffer overflow vulnerability exists in the adm.cgi set_sys_adm() functionality of Wavlink AC3000
A buffer overflow vulnerability exists in the adm.cgi set_sys_adm() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trigger this vulnerability.
nvd
CVE-2024-39773P4MEDIUMCVSS 5.3vm33a8.v5030.2105052025-01-14
CVE-2024-39773 [MEDIUM] CWE-306 CVE-2024-39773: An information disclosure vulnerability exists in the testsave.sh functionality of Wavlink AC3000 M3
An information disclosure vulnerability exists in the testsave.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability.
nvd
← Previous4 / 4