Buffer Overflow Vulnerabilities in Wavlink Wireless Router
CVE-2024-39802
9.1CRITICAL
What is CVE-2024-39802?
Multiple buffer overflow vulnerabilities have been identified in the qos.cgi qos_settings() functionality of the Wavlink AC3000 M33A8.V5030.210505 router. An attacker can exploit these vulnerabilities by sending specially crafted HTTP requests, potentially leading to a stack-based buffer overflow condition. These vulnerabilities can be triggered through authenticated HTTP requests, emphasizing the need for users to secure their devices against unauthorized access.
Affected Version(s)
Wavlink AC3000 M33A8.V5030.210505