Lucene search
K

8 matches found

VulnCheck KEV
VulnCheck KEV
added 2023/12/11 12:0 a.m.7 views

VulnCheck KEV: CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

10CVSS7.4AI score0.68794EPSS
Exploits1References1
OSV
OSV
added 2021/02/09 7:15 p.m.4 views

CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

9.8CVSS7.4AI score0.68794EPSS
Exploits1References2
NVD
NVD
added 2021/02/09 7:15 p.m.21 views

CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

10CVSS0.68794EPSS
Exploits1References2
Prion
Prion
added 2021/02/09 7:15 p.m.24 views

Cross site request forgery (csrf)

Wavlink WN575A4 and WN579X3 devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

10CVSS9.5AI score0.68794EPSS
Exploits1References1Affected Software2
Cvelist
Cvelist
added 2021/02/09 6:53 p.m.18 views

CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

9.7AI score0.68794EPSS
Exploits1References2
CVE
CVE
added 2021/02/09 6:53 p.m.82 views

CVE-2020-13117

Vulnerability summary (CVE-2020-13117) : Wavlink WN575A4 and WN579X3 devices (and WN530G3A per CVE scope) are affected by an unauthenticated remote command-injection vulnerability in the login API that uses the key parameter. The connected nuclei template confirms remote command execution, tested...

10CVSS9.6AI score0.68794EPSS
In wildExploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2021/02/09 12:0 a.m.5 views

PT-2021-9562 · Wavlink · Wavlink Wn579X3 +1

Name of the Vulnerable Software and Affected Versions: Wavlink WN575A4 and WN579X3 devices through 2020-05-15 Description: The issue allows unauthenticated remote users to inject commands via the key parameter in a "login request" API endpoint. Recommendations: For Wavlink WN575A4 and WN579X3...

10CVSS7.3AI score0.68794EPSS
Exploits1References4
CNNVD
CNNVD
added 2021/02/09 12:0 a.m.9 views

Wavlink WN575A4 and WN579X3 Command Injection Vulnerabilities

The WAVLINK WN579X3 and WAVLINK WN575A4 are both products of China Ruiyin WAVLINK Corporation.The WAVLINK WN579X3 is a wireless access point.The WAVLINK WN575A4 is a router. A command injection vulnerability exists in the Wavlink WN575A4 and WN579X3, which can be exploited to execute an...

10CVSS7.4AI score0.68794EPSS
Exploits1References4
Rows per page
Query Builder