2 matches found
CVE-2024-39359
CVE-2024-39359 describes a stack-based buffer overflow in the Wavlink AC3000 wireless.cgi DeleteMac() function (variant M33A8.V5030.210505). A specially crafted, authenticated HTTP request can trigger arbitrary code execution via uncontrolled copies in DeleteMac(), with evidence of an abuse chain...
Wavlink AC3000 wireless.cgi DeleteMac() buffer overflow vulnerability
Talos Vulnerability Report TALOS-2024-2040 Wavlink AC3000 wireless.cgi DeleteMac buffer overflow vulnerability January 14, 2025 CVE Number CVE-2024-39359 SUMMARY A stack-based buffer overflow vulnerability exists in the wireless.cgi DeleteMac functionality of Wavlink AC3000 M33A8.V5030.210505. A...