exploitDog

GHSA-c969-qwm2-pf77

Опубликовано: 02 сент. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

Ссылки

EPSS

Процентиль: 93%

0.0984

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2025-50757

CVSS3: 6.5

nvd

5 месяцев назад

Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

EPSS

Процентиль: 93%

0.0984

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-77