An issue was discovered on Wavlink WL-WN530HG4 M30HG4.V5030.191116 devices. Multiple buffer overflow vulnerabilities exist in CGI scripts, leading to remote code execution with root privileges. (The set of affected scripts is similar to CVE-2020-12266.)
References
Link | Resource |
---|---|
https://gitlab.com/drakylar1/drakylar-cve-list/-/blob/master/Wavlink/CVE-2020-15490_multiple_BoF.txt | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-07-01 14:15
Updated : 2020-07-09 13:11
NVD link : CVE-2020-15490
Mitre link : CVE-2020-15490
JSON object : View
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Products Affected
wavlink
- wl-wn530hg4_firmware
- wl-wn530hg4