A vulnerability, which was classified as critical, has been found in Wavlink WN551K1. Affected by this issue is some unknown functionality of the file /cgi-bin/touchlist_sync.cgi. The manipulation of the argument IP leads to command injection.
This vulnerability is handled as CVE-2024-38894. The attack needs to be initiated within the local network. There is no exploit available.