34 matches found
CVE-2024-38894
WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlistsync.cgi...
CVE-2024-38896
WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...
CVE-2024-38892
An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...
CVE-2024-38895
WAVLINK WN551K1'livemfg.shtml enables attackers to obtain sensitive router information...
WAVLINK WN551K1 ExportAllSettings.sh Component Information Disclosure Vulnerability
The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that originates in the ExportAllSettings.sh component, which is not sufficiently protected against sensitive information and can be exploited b...
WAVLINK WN551K1 /cgi-bin/nightled.cgi Command Injection Vulnerability
The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from a command injection vulnerability that stems from the starthour parameter of /cgi-bin/nightled.cgi failing to properly filter constructed command special characters, commands, and so...
WAVLINK WN551K1 /cgi-bin/touchlist_sync.cgi Command Injection Vulnerability
The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from a command injection vulnerability that stems from the IP parameter of /cgi-bin/touchlistsync.cgi failing to properly filter constructed command special characters, commands, and so on...
WAVLINK WN551K1 live_check.shtml Interface Information Disclosure Vulnerability
The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livecheck.shtml interface, which can be exploited by an attacker to obtain sensitive router...
WAVLINK WN551K1 live_mfg.shtml Interface Information Disclosure Vulnerability
The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livemfg.shtml interface, which can be exploited by an attacker to obtain sensitive router...
CVE-2024-38894
WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlistsync.cgi...
CVE-2024-38892
An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...
CVE-2024-38896
WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...
WAVLINK WN551K1 安全漏洞
The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from a command injection vulnerability that stems from the IP parameter of /cgi-bin/touchlistsync.cgi failing to properly filter constructed command special characters, commands, and so on...
CVE-2024-38892
An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...
WAVLINK WN551K1 安全漏洞
The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livemfg.shtml interface, which can be exploited by an attacker to obtain sensitive router...
CVE-2024-38896
WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...
CVE-2024-38892
An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...
PT-2024-28264 · Wavlink · Wavlink Wn551K1
Name of the Vulnerable Software and Affected Versions: Wavlink WN551K1 affected versions not specified Description: The issue allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component. Recommendations: At the moment, there is no information about a newer...
CVE-2024-38896
CVE-2024-38896 affects WAVLINK WN551K1 routers. The vulnerability is a command injection in the start_hour parameter of /cgi-bin/nightled.cgi. According to the records, the CVSSv3.1 vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N, with a base score of 5.3 (Medium). Impact is limited to con...
CVE-2024-38895
CVE-2024-38895 affects WAVLINK WN551K1: the live_mfg.shtml endpoint permits information disclosure due to improper authorization, allowing network-accessed, unauthenticated extraction of sensitive router data. The issue is documented by multiple sources (CNVD/CNNVD/NVD) as an information-disclosu...