← Back

Wl Wn535k3 Firmware

wl-wn535k3_firmware

Vendor: Wavlink • 5 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-50757
1Wavlink
1Wl Wn535k3 Firmware
Sep 4, 2025
Sep 2, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted requ...Show more
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.Show less
CVE-2025-50755
1Wavlink
1Wl Wn535k3 Firmware
Sep 4, 2025
Sep 2, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_cmd function via the command parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted reque...Show more
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_cmd function via the command parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.Show less
CVE-2022-2488
1Wavlink
2Wl Wn535k2 Firmware
Wl Wn535k3 Firmware
Jan 14, 2025
Jul 20, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
A vulnerability was found in WAVLINK WN535K2 and WN535K3 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/touchlist_sync.cgi. The manipulation of the argument IP leads to os com...Show more
A vulnerability was found in WAVLINK WN535K2 and WN535K3 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/touchlist_sync.cgi. The manipulation of the argument IP leads to os command injection. The exploit has been disclosed to the public and may be used.Show less
CVE-2022-2487
1Wavlink
2Wl Wn535k2 Firmware
Wl Wn535k3 Firmware
Nov 21, 2024
Jul 20, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
A vulnerability has been found in WAVLINK WN535K2 and WN535K3 and classified as critical. This vulnerability affects unknown code of the file /cgi-bin/nightled.cgi. The manipulation of the argument start_hour leads to os...Show more
A vulnerability has been found in WAVLINK WN535K2 and WN535K3 and classified as critical. This vulnerability affects unknown code of the file /cgi-bin/nightled.cgi. The manipulation of the argument start_hour leads to os command injection. The exploit has been disclosed to the public and may be used.Show less
CVE-2022-2486
1Wavlink
2Wl Wn535k2 Firmware
Wl Wn535k3 Firmware
Nov 21, 2024
Jul 20, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
A vulnerability, which was classified as critical, was found in WAVLINK WN535K2 and WN535K3. This affects an unknown part of the file /cgi-bin/mesh.cgi?page=upgrade. The manipulation of the argument key leads to os comma...Show more
A vulnerability, which was classified as critical, was found in WAVLINK WN535K2 and WN535K3. This affects an unknown part of the file /cgi-bin/mesh.cgi?page=upgrade. The manipulation of the argument key leads to os command injection. The exploit has been disclosed to the public and may be used.Show less