Описание
A command injection vulnerability in the component /cgi-bin/qos.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input.
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:wavlink:wl-wn579a3_firmware:1.0:*:*:*:*:*:*:*
cpe:2.3:h:wavlink:wl-wn579a3:-:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00961
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 9.8
github
29 дней назад
A command injection vulnerability in the component /cgi-bin/qos.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input.
EPSS
Процентиль: 75%
0.00961
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-94