.. / CVE-2023-3380

Exploit for WAVLINK WN579X3 - Remote Command Execution (CVE-2023-3380)

Description:

Remote Command Execution vulnerability in WAVLINK WN579X3 routers via pingIp parameter in /cgi-bin/adm.cgi.

Nuclei Template

View the template here CVE-2023-3380.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-3380.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2023-3380
https://github.com/sleepyvv/vul_report/blob/main/WAVLINK/WAVLINK-WN579X3-RCE.md
https://vuldb.com/?id.232236
https://vuldb.com/?ctiid.232236