5 matches found
CVE-2024-39754
A static login vulnerability exists in the wctrls functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted set of network packets can lead to root access. An attacker can send packets to trigger this vulnerability...
CVE-2024-39754
creationtimestamp| type| source ---|---|--- 2025-01-14 15:17:22+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkbg24ln2f...
CVE-2024-39754
A static login vulnerability exists in the wctrls functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted set of network packets can lead to root access. An attacker can send packets to trigger this vulnerability...
CVE-2024-39754
CVE-2024-39754 affects WAVLINK AC3000 software, specifically the wctrls functionality in version M33A8.V5030.210505. The vulnerability involves an unauthenticated, WAN-accessible UDP service on port 36338 that processes crafted packets, enabling a remote attacker to gain root access and enable te...
Wavlink AC3000 wctrls static login vulnerability
Talos Vulnerability Report TALOS-2024-2034 Wavlink AC3000 wctrls static login vulnerability January 14, 2025 CVE Number CVE-2024-39754 SUMMARY A static login vulnerability exists in the wctrls functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted set of network packets can lead ...