Wavlink Wl-wn530hg4_firmware

8 CVEs affecting Wavlink Wl-wn530hg4_firmware. Latest disclosed: 2023-02-06. Critical: 3, High: 4.

Top CVEs affecting Wavlink Wl-wn530hg4_firmware
CVESeverityScorePublishedSummary
CVE-2022-34045Critical9.82022-07-20Wavlink WN530HG4 M30HG4.V5030.191116 was discovered to contain a hardcoded encryption/decryption key for its configuration files at /etc_ro/lighttpd/www/cgi-bi…
CVE-2020-15490Critical9.82020-07-01An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple buffer overflow vulnerabilities exist in CGI scripts, leading to remote co…
CVE-2020-15489Critical9.82020-07-01An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple shell metacharacter injection vulnerabilities exist in CGI scripts, leadin…
CVE-2020-10971High8.82020-05-07An issue was discovered on Wavlink Jetstream devices where a crafted POST request can be sent to adm.cgi that will result in the execution of the supplied comm…
CVE-2022-48166High7.52023-02-06An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configuration data and log files and obtain adm…
CVE-2022-34047High7.52022-07-20An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows attackers to obtain usernames and passwords via view-source:http://IP_ADDRESS/set_safety…
CVE-2020-12266High7.52020-04-27An issue was discovered where there are multiple externally accessible pages that do not require any sort of authentication, and store system information for i…
CVE-2022-34049Medium5.32022-07-20An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows unauthenticated attackers to download log files and configuration data.