Lucene search
K

24 matches found

The Hacker News
The Hacker News
added 2026/01/01 9:19 a.m.13 views

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

Cybersecurity researchers have disclosed details of a persistent nine-month-long campaign that has targeted Internet of Things IoT devices and web applications to enroll them into a botnet known as RondoDox. As of December 2025, the activity has been observed leveraging the recently disclosed...

10CVSS8.1AI score0.99999EPSS
Exploits428
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-33110

Malicious code in bioql PyPI...

8.6CVSS7.1AI score0.1413EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2025/06/02 12:0 a.m.15 views

The vulnerability of the sys_login function in the /cgi-bin/login.cgi script of the WAVLINK QUANTUM D2G, QUANTUM D3G, WL-WN530G3A, WL-WN530HG3, WL-WN532A3, and WL-WN576K1 routers allows a hacker to execute arbitrary code.

The vulnerability of the syslogin function in the /cgi-bin/login.cgi script of the WAVLINK QUANTUM D2G, QUANTUM D3G, WL-WN530G3A, WL-WN530HG3, WL-WN532A3, and WL-WN576K1 routers is related to the copying of buffers without checking the size of the input data during the processing of the loginpage...

10CVSS8.2AI score0.00692EPSS
Exploits0References2Affected Software6
CNNVD
CNNVD
added 2025/06/01 12:0 a.m.5 views

WAVLINK多款产品 安全漏洞

WAVLINK is a router from China Ruiyin WAVLINK. It is a hardware device that connects two or more networks and acts as a gateway between networks. A security vulnerability exists in several WAVLINK products, which originates from a buffer overflow in the parameter loginpage in the file...

10CVSS9.7AI score0.00692EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 9:58 p.m.6 views

CVE-2022-35517

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameters: webpskValue, wlMethod, wlanssid, EncrypType, rwanip, rwanmask, rwangateway, pppusername, ppppasswd and pppsetver, which leads to command injection in page /wizardroutermesh.shtml...

8.8CVSS7.5AI score0.02251EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/05/05 12:0 a.m.8 views

The vulnerability of the ping_ddns() function in the internet.cgi scenario of the Wavlink WN530H4, WN530HG4, and WN572HG3 routers allows attackers to execute arbitrary commands.

The vulnerability of the pingddns function in the internet.cgi scenario of the Wavlink WN530H4, WN530HG4, and WN572HG3 routers is related to the lack of data cleaning at the management level when processing DDNS parameters. Exploiting this vulnerability allows a remote attacker to execute arbitra...

6.5CVSS5.9AI score0.15043EPSS
Exploits1References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/03/05 12:0 a.m.6 views

The vulnerability of the openvpn_server_setup() function in the openvpn.cgi scenario of the Wavlink AC3000 (WL-WN533A8) router microprogramming software allows a hacker to circumvent existing security restrictions.

The vulnerability of the openvpnserversetup function in the openvpn.cgi script of the Wavlink AC3000 WL-WN533A8 router software is related to errors in system configuration or settings. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions by sending...

9.1CVSS7.7AI score0.0183EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2024/10/27 12:0 a.m.6 views

WAVLINK多款产品 命令注入漏洞

WAVLINK WN530HG4 and others are products of China RuiYin WAVLINK Company.WAVLINK WN530HG4 is a wireless router.WAVLINK WN530H4 is a router.WAVLINK WN572HG3 is a wireless router. A command injection vulnerability exists in several WAVLINK products. The vulnerability stems from the parameter...

8.6CVSS7.3AI score0.1413EPSS
Exploits1References4
OSV
OSV
added 2024/10/20 8:15 a.m.5 views

CVE-2024-10194

A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been classified as critical. Affected is the function Gotochidx of the file login.cgi of the component Front-End Authentication Page. The manipulation of the argument wlanUrl leads to stack-based buffer...

8.8CVSS6.1AI score0.01124EPSS
Exploits1References4
NVD
NVD
added 2024/10/20 8:15 a.m.27 views

CVE-2024-10193

A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028 and classified as critical. This issue affects the function pingddns of the file internet.cgi. The manipulation of the argument DDNS leads to command injection. The attack may be initiated remotely. The exploit has...

7.2CVSS0.15043EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/20 7:31 a.m.13 views

CVE-2024-10193 WAVLINK WN530H4/WN530HG4/WN572HG3 internet.cgi ping_ddns command injection

A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028 and classified as critical. This issue affects the function pingddns of the file internet.cgi. The manipulation of the argument DDNS leads to command injection. The attack may be initiated remotely. The exploit has...

5.8CVSS5.3AI score0.15043EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/10/20 12:0 a.m.4 views

WAVLINK WL-WN530H4、WN530HG4和WN572HG3 安全漏洞

WAVLINK WN530HG4 and others are products of RuiYin Technology WAVLINK, China.WAVLINK WN530HG4 is a wireless router.WAVLINK WL-WN530H4 is a router.WAVLINK WN572HG3 is a wireless router. A security vulnerability exists in the WAVLINK WL-WN530H4, WN530HG4, and WN572HG3, which stems from the fact tha...

8.8CVSS8.9AI score0.01124EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/10/20 12:0 a.m.4 views

WAVLINK WN530H4、WN530HG4和WN572HG3 命令注入漏洞

WAVLINK WN530HG4 and others are products of RuiYin Technology WAVLINK, China.WAVLINK WN530HG4 is a wireless router.WAVLINK WL-WN530H4 is a router.WAVLINK WN572HG3 is a wireless router. A command injection vulnerability exists in WAVLINK WN530H4, WN530HG4, and WN572HG3, which stems from the fact...

7.2CVSS5.5AI score0.15043EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2022/08/10 8:15 p.m.7 views

CVE-2022-35535

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameter macAddr, which leads to command injection in page /wifimesh.shtml...

9.8CVSS7.3AI score0.02302EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/08/10 8:15 p.m.4 views

CVE-2022-35521

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameters: remoteManagementEnabled, blockPortScanEnabled, pingFrmWANFilterEnabled and blockSynFloodEnabled, which leads to command injection in page /mansecurity.shtml...

9.8CVSS7.3AI score0.02302EPSS
Exploits1References2
Prion
Prion
added 2022/08/10 8:15 p.m.14 views

Command injection

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameters: wlansignal, webpskValue, selEncrypTyp, selAutomode, wlanbssid, wlanssid and wlanchannel, which leads to command injection in page /wizardrep.shtml...

7.5CVSS9.7AI score0.02302EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/08/10 12:0 a.m.5 views

多款WAVLINK产品安全漏洞

WAVLINK AC1200 and so on are the products of China RuiYin Technology WAVLINK company.WAVLINK AC1200 is a dual-band high-power wireless router.WAVLINK WL-WN531P3 is a wireless router.WAVLINK WN533A8 is a wireless router.WAVLINK WN572HP3, WN530H4, WN535G3, WN531P3 AC1200 version has a security...

8.8CVSS7.9AI score0.02251EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/08/10 12:0 a.m.5 views

多款WAVLINK产品安全漏洞

WAVLINK AC1200 and so on are products of China RuiYin Technology WAVLINK company.WAVLINK AC1200 is a dual-band high-power wireless router.WAVLINK WL-WN531P3 is a wireless router.WAVLINK WN533A8 is a wireless router. A security vulnerability exists in the WAVLINK WN572HP3, WN533A8, WN530H4, WN535G...

9.8CVSS8.3AI score0.02302EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/08/10 12:0 a.m.5 views

多款WAVLINK产品安全漏洞

WAVLINK AC1200 and others are products of China RuiYin Technology WAVLINK.WAVLINK AC1200 is a dual-band high power wireless router.WAVLINK WL-WN531P3 is a wireless router.WAVLINK WN533A8 is a wireless router. A security vulnerability exists in WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3...

9.8CVSS8.3AI score0.02302EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/08/10 12:0 a.m.5 views

多款WAVLINK产品安全漏洞

WAVLINK AC1200 and so on are products of China RuiYin Technology WAVLINK company.WAVLINK AC1200 is a dual-band high-power wireless router.WAVLINK WL-WN531P3 is a wireless router.WAVLINK WN533A8 is a wireless router. A security vulnerability exists in WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3,...

9.8CVSS8.3AI score0.02404EPSS
Exploits1References2
Rows per page
Query Builder