Описание
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:wavlink:wl-wn535k3_firmware:20191010:*:*:*:*:*:*:*
cpe:2.3:h:wavlink:wl-wn535k3:-:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.12683
Средний
6.5 Medium
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 6.5
github
15 дней назад
Wavlink WN535K3 20191010 was found to contain a command injection vulnerability in the set_sys_adm function via the username parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.
EPSS
Процентиль: 94%
0.12683
Средний
6.5 Medium
CVSS3
Дефекты
CWE-77