← Back

Wavlink

wavlink

203 CVEs • 76 products

Products (76)

Click to collapse
Toggle
Wl Wn533a8 Firmware
wl-wn533a8_firmware
63 CVEs
Wl Nu516u1 Firmware
wl-nu516u1_firmware
28 CVEs
Wn530h4 Firmware
wn530h4_firmware
27 CVEs
Wn535g3 Firmware
wn535g3_firmware
23 CVEs
Wn533a8 Firmware
wn533a8_firmware
20 CVEs
Wn531p3 Firmware
wn531p3_firmware
17 CVEs
Wn572hp3 Firmware
wn572hp3_firmware
16 CVEs
Wl Wn578w2 Firmware
wl-wn578w2_firmware
9 CVEs
Wl Wn530hg4 Firmware
wl-wn530hg4_firmware
8 CVEs
Wl Wn579a3 Firmware
wl-wn579a3_firmware
8 CVEs
Wl Wn575a3 Firmware
wl-wn575a3_firmware
7 CVEs
Wn551k1 Firmware
wn551k1_firmware
7 CVEs
Wn531g3 Firmware
wn531g3_firmware
6 CVEs
Wn530hg4 Firmware
wn530hg4_firmware
6 CVEs
Wn572hg3 Firmware
wn572hg3_firmware
6 CVEs
Wn579x3 Firmware
wn579x3_firmware
5 CVEs
Wl Wn535k3 Firmware
wl-wn535k3_firmware
5 CVEs
Wifi Repeater Firmware
wifi-repeater_firmware
5 CVEs
Wl Wn531ax2 Firmware
wl-wn531ax2_firmware
5 CVEs
Wl Wn579g3 Firmware
wl-wn579g3_firmware
3 CVEs
Wl Wn531g3 Firmware
wl-wn531g3_firmware
3 CVEs
Aerial X 1200m Firmware
aerial_x_1200m_firmware
3 CVEs
Wl Wn535k2 Firmware
wl-wn535k2_firmware
3 CVEs
Wl Wn579x3 C Firmware
wl-wn579x3-c_firmware
3 CVEs
Wl Wn570ha1 Firmware
wl-wn570ha1_firmware
3 CVEs
Wn531a6 Firmware
wn531a6_firmware
2 CVEs
Wn57x93 Firmware
wn57x93_firmware
2 CVEs
Wn578a2 Firmware
wn578a2_firmware
2 CVEs
Wn579g3 Firmware
wn579g3_firmware
2 CVEs
Jetstream Ac3000 Firmware
jetstream_ac3000_firmware
2 CVEs
Jetstream Erac3000 Firmware
jetstream_erac3000_firmware
2 CVEs
Wn575a4 Firmware
wn575a4_firmware
2 CVEs
Wl Wn531p3 Firmware
wl-wn531p3_firmware
2 CVEs
Wl Wn530h4 Firmware
wl-wn530h4_firmware
2 CVEs
Wl Wn579x3 Firmware
wl-wn579x3_firmware
1 CVE
Wavrouter App
wavrouter_app
1 CVE
Wn701ae Firmware
wn701ae_firmware
1 CVE
Wn535k3 Firmware
wn535k3_firmware
1 CVE
Wl Wn586x3a Firmware
wl-wn586x3a_firmware
1 CVE
Wl Wn579g3
wl-wn579g3
0 CVEs
Wl Wn575a3
wl-wn575a3
0 CVEs
Wl Wn530hg4
wl-wn530hg4
0 CVEs
Wn531g3
wn531g3
0 CVEs
Wn533a8
wn533a8
0 CVEs
Wn531a6
wn531a6
0 CVEs
Wn551k1
wn551k1
0 CVEs
Wn535g3
wn535g3
0 CVEs
Wn530h4
wn530h4
0 CVEs
Wn57x93
wn57x93
0 CVEs
Wn578a2
wn578a2
0 CVEs
Wn579g3
wn579g3
0 CVEs
Wn579x3
wn579x3
0 CVEs
Jetstream Ac3000
jetstream_ac3000
0 CVEs
Jetstream Erac3000
jetstream_erac3000
0 CVEs
Wn530hg4
wn530hg4
0 CVEs
Wn572hg3
wn572hg3
0 CVEs
Wn575a4
wn575a4
0 CVEs
Wl Wn531g3
wl-wn531g3
0 CVEs
Wl Wn531p3
wl-wn531p3
0 CVEs
Aerial X 1200m
aerial_x_1200m
0 CVEs
Wl Wn535k2
wl-wn535k2
0 CVEs
Wl Wn535k3
wl-wn535k3
0 CVEs
Wl Wn579x3
wl-wn579x3
0 CVEs
Wn572hp3
wn572hp3
0 CVEs
Wn531p3
wn531p3
0 CVEs
Wl Wn530h4
wl-wn530h4
0 CVEs
Wl Wn533a8
wl-wn533a8
0 CVEs
Wl Wn531ax2
wl-wn531ax2
0 CVEs
Wn701ae
wn701ae
0 CVEs
Wl Wn579a3
wl-wn579a3
0 CVEs
Wn535k3
wn535k3
0 CVEs
Wl Nu516u1
wl-nu516u1
0 CVEs
Wl Wn578w2
wl-wn578w2
0 CVEs
Wl Wn586x3a
wl-wn586x3a
0 CVEs
Wl Wn579x3 C
wl-wn579x3-c
0 CVEs
Wl Wn570ha1
wl-wn570ha1
0 CVEs

CVEs (203)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-39769
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can m...Show more
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.This vulnerability exists in the `cli_mac` POST parameter.Show less
CVE-2024-39768
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can m...Show more
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.This vulnerability exists in the `cli_name` POST parameter.Show less
CVE-2024-39765
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An a...Show more
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the `custom_interface` POST parameter.Show less
CVE-2024-39764
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An a...Show more
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the `dest` POST parameter.Show less
CVE-2024-39763
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An a...Show more
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the `gateway` POST parameter.Show less
CVE-2024-39762
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An a...Show more
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the `netmask` POST parameter.Show less
CVE-2024-39761
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker c...Show more
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an unauthenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists within the `restart_week_value` POST parameter.Show less
CVE-2024-39760
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker c...Show more
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an unauthenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists within the `restart_min_value` POST parameter.Show less
CVE-2024-39759
1Wavlink
1Wl Wn533a8 Firmware
Nov 3, 2025
Jan 14, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker c...Show more
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an unauthenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists within the `restart_hour_value` POST parameter.Show less
CVE-2024-39757
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
A stack-based buffer overflow vulnerability exists in the wireless.cgi AddMac() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker ca...Show more
A stack-based buffer overflow vulnerability exists in the wireless.cgi AddMac() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.Show less
CVE-2024-39756
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
A buffer overflow vulnerability exists in the adm.cgi rep_as_router() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an...Show more
A buffer overflow vulnerability exists in the adm.cgi rep_as_router() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an authenticated HTTP request to trigger this vulnerability.Show less
CVE-2024-39754
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
A static login vulnerability exists in the wctrls functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted set of network packets can lead to root access. An attacker can send packets to trigger this vulne...Show more
A static login vulnerability exists in the wctrls functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted set of network packets can lead to root access. An attacker can send packets to trigger this vulnerability.Show less
CVE-2024-39608
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
A firmware update vulnerability exists in the login.cgi functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary firmware update. An attacker can send an unauthenticated...Show more
A firmware update vulnerability exists in the login.cgi functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary firmware update. An attacker can send an unauthenticated message to trigger this vulnerability.Show less
CVE-2024-39604
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
8.1 HIGH· v3
N/A· v2
A command execution vulnerability exists in the update_filter_url.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can perform a...Show more
A command execution vulnerability exists in the update_filter_url.sh functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.Show less
CVE-2024-39603
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
A stack-based buffer overflow vulnerability exists in the wireless.cgi set_wifi_basic_mesh() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. A...Show more
A stack-based buffer overflow vulnerability exists in the wireless.cgi set_wifi_basic_mesh() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.Show less
CVE-2024-39602
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
9.1 CRITICAL· v3
N/A· v2
An external config control vulnerability exists in the nas.cgi set_nas() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make...Show more
An external config control vulnerability exists in the nas.cgi set_nas() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.Show less
CVE-2024-39370
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
An arbitrary code execution vulnerability exists in the adm.cgi set_MeshAp() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make...Show more
An arbitrary code execution vulnerability exists in the adm.cgi set_MeshAp() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.Show less
CVE-2024-39367
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
An os command injection vulnerability exists in the firewall.cgi iptablesWebsFilterRun() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attac...Show more
An os command injection vulnerability exists in the firewall.cgi iptablesWebsFilterRun() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.Show less
CVE-2024-39363
1Wavlink
1Wl Wn533a8 Firmware
Aug 25, 2025
Jan 14, 2025
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A cross-site scripting (xss) vulnerability exists in the login.cgi set_lang_CountryCode() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a disclosure of sensitive informa...Show more
A cross-site scripting (xss) vulnerability exists in the login.cgi set_lang_CountryCode() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.Show less
CVE-2024-39360
1Wavlink
1Wl Wn533a8 Firmware
Aug 21, 2025
Jan 14, 2025
N/A· v4
7.2 HIGH· v3
N/A· v2
An os command injection vulnerability exists in the nas.cgi remove_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an...Show more
An os command injection vulnerability exists in the nas.cgi remove_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.Show less