Lucene search
K

34 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.8 views

CVE-2024-38894

WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlistsync.cgi...

5.3CVSS5.7AI score0.01207EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.11 views

CVE-2024-38896

WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...

5.3CVSS5.7AI score0.01172EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.6 views

CVE-2024-38892

An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...

6.5CVSS6.5AI score0.00395EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:5 a.m.4 views

CVE-2024-38895

WAVLINK WN551K1'livemfg.shtml enables attackers to obtain sensitive router information...

5.3CVSS5.9AI score0.00394EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.0 views

WAVLINK WN551K1 live_check.shtml Interface Information Disclosure Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livecheck.shtml interface, which can be exploited by an attacker to obtain sensitive router...

5.3CVSS5.7AI score0.00402EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.2 views

WAVLINK WN551K1 ExportAllSettings.sh Component Information Disclosure Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that originates in the ExportAllSettings.sh component, which is not sufficiently protected against sensitive information and can be exploited b...

6.5CVSS5.7AI score0.00395EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.2 views

WAVLINK WN551K1 /cgi-bin/nightled.cgi Command Injection Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from a command injection vulnerability that stems from the starthour parameter of /cgi-bin/nightled.cgi failing to properly filter constructed command special characters, commands, and so...

5.3CVSS6.8AI score0.01172EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.3 views

WAVLINK WN551K1 /cgi-bin/touchlist_sync.cgi Command Injection Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from a command injection vulnerability that stems from the IP parameter of /cgi-bin/touchlistsync.cgi failing to properly filter constructed command special characters, commands, and so on...

5.3CVSS6.8AI score0.01207EPSS
Exploits1References1
CNVD
CNVD
added 2024/06/28 12:0 a.m.2 views

WAVLINK WN551K1 live_mfg.shtml Interface Information Disclosure Vulnerability

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livemfg.shtml interface, which can be exploited by an attacker to obtain sensitive router...

5.3CVSS5.8AI score0.00394EPSS
Exploits1References1
NVD
NVD
added 2024/06/24 9:15 p.m.14 views

CVE-2024-38892

An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...

6.5CVSS0.00395EPSS
Exploits1References1
NVD
NVD
added 2024/06/24 9:15 p.m.30 views

CVE-2024-38896

WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...

5.3CVSS0.01172EPSS
Exploits1References1
NVD
NVD
added 2024/06/24 9:15 p.m.34 views

CVE-2024-38894

WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlistsync.cgi...

5.3CVSS0.01207EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/24 12:0 a.m.13 views

CVE-2024-38896

WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...

7.5AI score0.01172EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/06/24 12:0 a.m.3 views

WAVLINK WN551K1 安全漏洞

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from a command injection vulnerability that stems from the IP parameter of /cgi-bin/touchlistsync.cgi failing to properly filter constructed command special characters, commands, and so on...

5.3CVSS7.5AI score0.01207EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/06/24 12:0 a.m.13 views

CVE-2024-38892

An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component...

6.4AI score0.00395EPSS
Exploits1References1
CVE
CVE
added 2024/06/24 12:0 a.m.48 views

CVE-2024-38895

CVE-2024-38895 affects WAVLINK WN551K1: the live_mfg.shtml endpoint permits information disclosure due to improper authorization, allowing network-accessed, unauthenticated extraction of sensitive router data. The issue is documented by multiple sources (CNVD/CNNVD/NVD) as an information-disclosu...

5.3CVSS6.7AI score0.00394EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/06/24 12:0 a.m.58 views

CVE-2024-38896

CVE-2024-38896 affects WAVLINK WN551K1 routers. The vulnerability is a command injection in the start_hour parameter of /cgi-bin/nightled.cgi. According to the records, the CVSSv3.1 vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N, with a base score of 5.3 (Medium). Impact is limited to con...

5.3CVSS7.5AI score0.01172EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/06/24 12:0 a.m.48 views

CVE-2024-38894

CVE-2024-38894 affects WAVLINK WN551K1 routers. A command injection flaw can be triggered by the IP parameter in /cgi-bin/touchlist_sync.cgi, allowing an attacker to inject commands through that parameter. The issue is described across multiple sources (Red Hat, CNVD, NVD, CNNVD) with no explicit...

5.3CVSS7.7AI score0.01207EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2024/06/24 12:0 a.m.2 views

WAVLINK WN551K1 安全漏洞

The WAVLINK WN551K1 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN551K1 suffers from an information disclosure vulnerability that stems from improper authorization of the livemfg.shtml interface, which can be exploited by an attacker to obtain sensitive router...

5.3CVSS6.1AI score0.00394EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/06/24 12:0 a.m.24 views

CVE-2024-38896

WAVLINK WN551K1 found a command injection vulnerability through the starthour parameter of /cgi-bin/nightled.cgi...

0.01172EPSS
Exploits1References1
Rows per page
Query Builder