5 matches found
CVE-2024-39773
creationtimestamp| type| source ---|---|--- 2025-01-14 15:18:07+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkcqn6f32c...
CVE-2024-39773
An information disclosure vulnerability exists in the testsave.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2024-39773
An information disclosure vulnerability exists in the testsave.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2024-39773
CVE-2024-39773 affects Wavlink AC3000 (M33A8.V5030.210505). The issue resides in testsave.sh, which can disclose sensitive information via HTTP requests by dumping /var/log/messages due to how the lighttpd CGI/SH files are callable. CVSSv3.1 score is 5.3 (NETWORK, LOW attack complexity, no privil...
Wavlink AC3000 testsave.sh Information Disclosure vulnerability
Talos Vulnerability Report TALOS-2024-2035 Wavlink AC3000 testsave.sh Information Disclosure vulnerability January 14, 2025 CVE Number CVE-2024-39773 SUMMARY An information disclosure vulnerability exists in the testsave.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted...