Wavlink Wn579X3 Firmware vulnerabilities
3 known vulnerabilities affecting wavlink/wn579x3_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
2
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2020-13117P1CRITICALCVSS 9.8ExploitedPoC≤ 2020-05-152021-02-09
CVE-2020-13117 [CRITICAL] CWE-77 CVE-2020-13117: Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users
Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request.
nvd
CVE-2022-31847P2HIGHCVSS 7.5ExploitedPoCvm79x3.v5030.1807192022-06-14
CVE-2022-31847 [HIGH] CWE-425 CVE-2022-31847: A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN579 X3 M79X3.V5030.180719 allows attac
A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN579 X3 M79X3.V5030.180719 allows attackers to obtain sensitive router information via a crafted POST request.
nvd
CVE-2023-3380P2CRITICALCVSS 9.8PoC≤ 2023-06-152023-06-23
CVE-2023-3380 [CRITICAL] CWE-74 CVE-2023-3380: A vulnerability classified as critical has been found in Wavlink WN579X3 up to 20230615. Affected is
A vulnerability classified as critical has been found in Wavlink WN579X3 up to 20230615. Affected is an unknown function of the file /cgi-bin/adm.cgi of the component Ping Test. The manipulation of the argument pingIp leads to injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The id
nvd