CVE-2024-39800 [CRITICAL] :

Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A configuration injection vulnerability exists in the `open_port` POST parameter.

NetBlocks

internet
monitor
news
report

Open, source and reliable connectivity is essential for rights such as freedom of expression and freedom of association. Now we can measure network connectivity at internet scale.

Visit Website

Listed: Thu Sep 05 2024