GCVE - cpe:2.3:o:wavlink:wn530h4_firmware:20221028:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:wavlink:wn530h4_firmware:20221028:*:*:*:*:*:*:*

part: o version: 20221028 update: *

Vendor	Wavlink (`b3b0198b-0ff8-5498-8769-561cf3fe0e3d`)
Product	Wn530H4 Firmware (`ae50c069-885f-5070-ab87-52c4be73438e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-10429`	vulnerable	2026-06-03 14:54:11.680338	WAVLINK WN530H4/WN530HG4/WN572HG3 internet.cgi set_ipv6 command injection HIGH (7.2) A vulnerability classified as critical has been found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. Affected is the function set_ipv6 of the file internet.cgi. The manipulation of the argument IPv6OpMode/IPv6IPAddr/IPv6WANIPAddr/IPv6GWAddr leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Published: 2024-10-27T21:00:07.693Z Updated: 2024-10-28T14:31:32.749Z Open on db.gcve.eu Reference links https://vuldb.com/?id.281970 https://vuldb.com/?ctiid.281970 https://vuldb.com/?submit.427274 https://docs.google.com/document/d/1ktuys5jr7MKwz503QBbEfxZ5mZbXlbvl/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-10428`	vulnerable	2026-06-03 14:54:11.673994	WAVLINK WN530H4/WN530HG4/WN572HG3 firewall.cgi set_ipv6 command injection HIGH (7.2) A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been rated as critical. This issue affects the function set_ipv6 of the file firewall.cgi. The manipulation of the argument dhcpGateway leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Published: 2024-10-27T20:31:05.064Z Updated: 2024-10-28T14:44:44.018Z Open on db.gcve.eu Reference links https://vuldb.com/?id.281969 https://vuldb.com/?ctiid.281969 https://vuldb.com/?submit.427272 https://docs.google.com/document/d/11NGSJBOZzbgm_qanDno6SyucWyso7Em6/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

WAVLINK WN530H4 Firmware 20221028

PURL mappings

Vulnerability references

Contribute