Wavlink Wl-wn575a3 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Wavlink Wl-wn575a3 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2022-34592 — CVSS 9.8 (critical): Wavlink WL-WN575A3 RPT75A3.V4300.201217 was discovered to contain a command injection vulnerability via the function obtw. This…
CVE-2022-37149 — CVSS 9.8 (critical): WAVLINK WL-WN575A3 RPT75A3.V4300.201217 was discovered to contain a command injection vulnerability when operating the file adm.cgi. This…
CVE-2023-38861 — CVSS 9.8 (critical): An issue in Wavlink WL_WNJ575A3 v.R75A3_V1410_220513 allows a remote attacker to execute arbitrary code via username parameter of the…
CVE-2020-10971 — CVSS 8.8 (high): An issue was discovered on Wavlink Jetstream devices where a crafted POST request can be sent to adm.cgi that will result in the execution…
CVE-2020-10974 — CVSS 7.5 (high): An issue was discovered affecting a backup feature where a crafted POST request returns the current configuration of the device in…
CVE-2020-12266 — CVSS 7.5 (high): An issue was discovered where there are multiple externally accessible pages that do not require any sort of authentication, and store…
CVE-2025-25528 — CVSS 5.1 (medium): Multiple buffer overflow vulnerabilities in Wavlink WL-WN575A3 RPT75A3.V4300, which are caused by not performing strict length checks on…