Lucene search
K

34 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.7 views

CVE-2024-38894

WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlistsync.cgi...

5.3CVSS5.7AI score0.01207EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.10 views

CVE-2024-38896

WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...

5.3CVSS5.7AI score0.01172EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.6 views

CVE-2024-38892

An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...

6.5CVSS6.5AI score0.00395EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:5 a.m.4 views

CVE-2024-38895

WAVLINK WN551K1'livemfg.shtml enables attackers to obtain sensitive router information...

5.3CVSS5.9AI score0.00394EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.1 views

WAVLINK WN551K1 live_mfg.shtml Interface Information Disclosure Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livemfg.shtml interface, which can be exploited by an attacker to obtain sensitive router...

5.3CVSS5.8AI score0.00394EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.0 views

WAVLINK WN551K1 live_check.shtml Interface Information Disclosure Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livecheck.shtml interface, which can be exploited by an attacker to obtain sensitive router...

5.3CVSS5.7AI score0.00402EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.2 views

WAVLINK WN551K1 ExportAllSettings.sh Component Information Disclosure Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that originates in the ExportAllSettings.sh component, which is not sufficiently protected against sensitive information and can be exploited b...

6.5CVSS5.7AI score0.00395EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.2 views

WAVLINK WN551K1 /cgi-bin/nightled.cgi Command Injection Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from a command injection vulnerability that stems from the starthour parameter of /cgi-bin/nightled.cgi failing to properly filter constructed command special characters, commands, and so...

5.3CVSS6.8AI score0.01172EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.3 views

WAVLINK WN551K1 /cgi-bin/touchlist_sync.cgi Command Injection Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from a command injection vulnerability that stems from the IP parameter of /cgi-bin/touchlistsync.cgi failing to properly filter constructed command special characters, commands, and so on...

5.3CVSS6.8AI score0.01207EPSS
Exploits1References1
NVD
NVD
added 2024/06/24 9:15 p.m.29 views

CVE-2024-38894

WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlistsync.cgi...

5.3CVSS0.01207EPSS
Exploits1References1
NVD
NVD
added 2024/06/24 9:15 p.m.14 views

CVE-2024-38892

An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...

6.5CVSS0.00395EPSS
Exploits1References1
NVD
NVD
added 2024/06/24 9:15 p.m.30 views

CVE-2024-38896

WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...

5.3CVSS0.01172EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/24 12:0 a.m.23 views

CVE-2024-38894

WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlistsync.cgi...

0.01207EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/24 12:0 a.m.13 views

CVE-2024-38896

WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...

7.5AI score0.01172EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/24 12:0 a.m.13 views

CVE-2024-38892

An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...

6.4AI score0.00395EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/06/24 12:0 a.m.3 views

WAVLINK WN551K1 安全漏洞

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that originates in the ExportAllSettings.sh component, which is not sufficiently protected against sensitive information and can be exploited b...

6.5CVSS6.1AI score0.00395EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/06/24 12:0 a.m.2 views

WAVLINK WN551K1 安全漏洞

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livemfg.shtml interface, which can be exploited by an attacker to obtain sensitive router...

5.3CVSS6.1AI score0.00394EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/06/24 12:0 a.m.24 views

CVE-2024-38896

WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...

0.01172EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/06/24 12:0 a.m.4 views

PT-2024-28265 · Wavlink · Wavlink Wn551K1

Name of the Vulnerable Software and Affected Versions: WAVLINK WN551K1 affected versions not specified Description: A command injection issue was discovered, which can be exploited through the IP parameter of the "/cgi-bin/touchlist sync.cgi" API endpoint. Recommendations: At the moment, there is...

5.3CVSS7.2AI score0.01207EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/06/24 12:0 a.m.4 views

PT-2024-28266 · Wavlink · Wavlink Wn551K1

Name of the Vulnerable Software and Affected Versions: WAVLINK WN551K1 version not specified Description: The issue allows attackers to obtain sensitive router information through the 'live mfg.shtml' endpoint. Recommendations: For WAVLINK WN551K1, restrict access to the 'live mfg.shtml' endpoint...

5.3CVSS6.8AI score0.00394EPSS
Exploits1References4
Rows per page
Query Builder