CVE-2024-39781 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi sch_reboot restart_hour command injection (TALOS-2024-2033)

Posted by Angelo Barbosa | Jan 14, 2025 | CVE

A vulnerability was found in Wavlink AC3000 M33A8.V5030.210505. It has been declared as critical. Affected by this vulnerability is the function sch_reboot of the file adm.cgi. The manipulation of the argument restart_hour leads to command injection.

This vulnerability is known as CVE-2024-39781. The attack can be launched remotely. There is no exploit available.

CVE-2024-39781 | Wavlink AC3000 M33A8.V5030.210505 adm.cgi sch_reboot restart_hour command injection (TALOS-2024-2033)

Related Posts

CVE-2024-53057 | Linux Kernel up to 6.11.6 qdisc_tree_reduce_backlog iteration

CVE-2024-28237 | OctoPrint up to 1.9.3/1.10.0rc2 URL cross site scripting (GHSA-x7mf-wrh9-r76c)

CVE-2024-11032 | Parsi Date Plugin up to 5.1.1 on WordPress add_query_arg cross site scripting

CVE-2023-43550 | Qualcomm Snapdragon QMI Request memory corruption