Impact
A command injection vulnerability exists in the set_sys_cmd function of /cgi-bin/adm.cgi on the Wavlink WL‑WN570HA1 router. Unsanitized command arguments are passed directly to the underlying shell, allowing an attacker to execute arbitrary commands. This results in remote command execution. Based on the nature of the vulnerability, the attacker could potentially alter the device’s configuration, access or exfiltrate data, or disrupt the device’s operation, thereby impacting confidentiality, integrity, and availability.
Affected Systems
The flaw targets the Wavlink WL‑WN570HA1 router running firmware version R70HA1 V1410_221110. This particular firmware revision has been removed from the vendor’s website and is no longer supported, so no official patch is available.
Risk and Exploitability
The CVSS score of 5.3 indicates moderate severity. With an EPSS score of 3%, the likelihood of exploitation is considered low to moderate, and the issue is not cataloged in CISA KEV. The attack vector is remote, most likely achieved by sending crafted HTTP requests to the administration interface, and could be exploited until the device is replaced or isolated.
OpenCVE Enrichment