Penwei Huang

**Name of the Vulnerable Software and Affected Versions** WAVLINK WN535 G3 M35G3R.V5030.180927 **Description** A vulnerability exists in the /cgi-bin/ExportAllSettings.sh endpoint, allowing attackers to execute arbitrary code via a crafted POST request. **Recommendations** For WAVLINK WN535 G3 M35G3R.V5030.180927, as a temporary workaround, consider restricting access to the /cgi-bin/ExportAllSettings.sh endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 **Description** An access control issue allows attackers to arbitrarily configure device settings via accessing the page "mb wifibasic.shtml". **Recommendations** For Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19, as a temporary workaround, consider restricting access to the "mb wifibasic.shtml" page until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 **Description** The issue is related to an access control problem, allowing attackers to obtain key device information by accessing the Tftpd32.ini file. **Recommendations** For Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19, consider restricting access to the Tftpd32.ini file as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 **Description** An access control issue allows attackers to obtain the key information of the device via accessing "fctest.shtml". **Recommendations** For Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19, as a temporary workaround, consider restricting access to the "fctest.shtml" endpoint until a patch is available.

**Name of the Vulnerable Software and Affected Versions** WAVLINK WN579 X3 version M79X3.V5030.191012 **Description** The issue allows attackers to obtain key information by accessing the "messages.txt" page, resulting in an information leak. **Recommendations** For version M79X3.V5030.191012, consider restricting access to the "messages.txt" page until a fix is available.

**Name of the Vulnerable Software and Affected Versions** Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 **Description** An access control issue allows attackers to obtain system key information and execute arbitrary commands by accessing the page "syslog.shtml". **Recommendations** For Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19, as a temporary workaround, consider restricting access to the "syslog.shtml" page until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 **Description** An access control issue allows attackers to obtain the telnet password by accessing the page "tftp.txt". **Recommendations** For Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19, consider restricting access to the "tftp.txt" page until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** WAVLINK AERIAL X 1200M version M79X3.V5030.180719 **Description** A vulnerability in live check.shtml allows attackers to obtain sensitive router information via execution of the `exec cmd` function. **Recommendations** For version M79X3.V5030.180719, as a temporary workaround, consider restricting access to the live check.shtml page until a patch is available. Avoid using the `exec cmd` function in the affected page to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** WAVLINK WN579 X3 M79X3.V5030.180719 **Description** A vulnerability in the /cgi-bin/ExportAllSettings.sh endpoint allows attackers to obtain sensitive router information via a crafted POST request. **Recommendations** For WAVLINK WN579 X3 M79X3.V5030.180719, as a temporary workaround, consider restricting access to the /cgi-bin/ExportAllSettings.sh endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** WAVLINK AERIAL X 1200M version M79X3.V5030.191012 **Description** A vulnerability in the live mfg.shtml file allows attackers to obtain sensitive router information via execution of the `exec cmd` function. **Recommendations** For version M79X3.V5030.191012, consider disabling the `exec cmd` function as a temporary workaround until a patch is available. Restrict access to the live mfg.shtml file to minimize the risk of exploitation.