VulnCheck KEV: CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

Cross site request forgery (csrf)

Wavlink WN575A4 and WN579X3 devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

CVE-2020-13117

Wavlink WN575A4, WN579X3, and WN530G3A devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request...

CVE-2020-13117

Vulnerability summary (CVE-2020-13117) : Wavlink WN575A4 and WN579X3 devices (and WN530G3A per CVE scope) are affected by an unauthenticated remote command-injection vulnerability in the login API that uses the key parameter. The connected nuclei template confirms remote command execution, tested...

Wavlink WN575A4 and WN579X3 Command Injection Vulnerabilities

The WAVLINK WN579X3 and WAVLINK WN575A4 are both products of China Ruiyin WAVLINK Corporation.The WAVLINK WN579X3 is a wireless access point.The WAVLINK WN575A4 is a router. A command injection vulnerability exists in the Wavlink WN575A4 and WN579X3, which can be exploited to execute an...

PT-2021-9562 · Wavlink · Wavlink Wn579X3 +1

Name of the Vulnerable Software and Affected Versions: Wavlink WN575A4 and WN579X3 devices through 2020-05-15 Description: The issue allows unauthenticated remote users to inject commands via the key parameter in a "login request" API endpoint. Recommendations: For Wavlink WN575A4 and WN579X3...