WN551K1
by Wavlink
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-38897 | 0.00 | — | 0.00 | Jun 24, 2024 | WAVLINK WN551K1'live_check.shtml enables attackers to obtain sensitive router information. | |||
| CVE-2024-38895 | 0.00 | — | 0.00 | Jun 24, 2024 | WAVLINK WN551K1'live_mfg.shtml enables attackers to obtain sensitive router information. | |||
| CVE-2024-38892 | 0.00 | — | 0.00 | Jun 24, 2024 | An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component. | |||
| CVE-2024-38894 | 0.00 | — | 0.01 | Jun 24, 2024 | WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlist_sync.cgi. | |||
| CVE-2024-38896 | 0.00 | — | 0.01 | Jun 24, 2024 | WAVLINK WN551K1 found a command injection vulnerability through the start_hour parameter of /cgi-bin/nightled.cgi. |
- CVE-2024-38897Jun 24, 2024risk 0.00cvss —epss 0.00
WAVLINK WN551K1'live_check.shtml enables attackers to obtain sensitive router information.
- CVE-2024-38895Jun 24, 2024risk 0.00cvss —epss 0.00
WAVLINK WN551K1'live_mfg.shtml enables attackers to obtain sensitive router information.
- CVE-2024-38892Jun 24, 2024risk 0.00cvss —epss 0.00
An issue in Wavlink WN551K1 allows a remote attacker to obtain sensitive information via the ExportAllSettings.sh component.
- CVE-2024-38894Jun 24, 2024risk 0.00cvss —epss 0.01
WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin/touchlist_sync.cgi.
- CVE-2024-38896Jun 24, 2024risk 0.00cvss —epss 0.01
WAVLINK WN551K1 found a command injection vulnerability through the start_hour parameter of /cgi-bin/nightled.cgi.