{"vulnerability": "cve-2024-3978", "sightings": [{"uuid": "ff09350e-3132-4373-b03a-779024e8d75c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39781", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkcvvmku2r", "content": "", "creation_timestamp": "2025-01-14T15:18:12.955560Z"}, {"uuid": "a4e35a2b-9cd6-4255-ad38-b4eba3ce6505", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39789", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkdnlxjl2b", "content": "", "creation_timestamp": "2025-01-14T15:18:37.867821Z"}, {"uuid": "1d1b54cf-3b2f-40c1-89fc-03089d3cb46e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39782", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkczdumn2n", "content": "", "creation_timestamp": "2025-01-14T15:18:16.985897Z"}, {"uuid": "19c65288-d2b9-43b7-a63e-cda495d69e22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39783", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkd4s4od2c", "content": "", "creation_timestamp": "2025-01-14T15:18:20.280034Z"}, {"uuid": "8694dec9-8f45-4b20-8298-238ab0a4dd73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39784", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkd7qr4v2j", "content": "", "creation_timestamp": "2025-01-14T15:18:23.566896Z"}, {"uuid": "557eeb05-e5a2-40da-a455-8639f5099a23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39785", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkdcqem72h", "content": "", "creation_timestamp": "2025-01-14T15:18:26.380398Z"}, {"uuid": "afec6266-2700-40ce-9d08-e42aadca4d49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39788", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpkdkhsvn2f", "content": "", "creation_timestamp": "2025-01-14T15:18:34.507285Z"}, {"uuid": "903b16be-ebbe-4bfe-aef0-bc1dd12f8e7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39783", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfplypho7s2w", "content": "", "creation_timestamp": "2025-01-14T15:48:18.203997Z"}, {"uuid": "b176ad89-9b30-42cb-a233-c346a9afe012", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39784", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827498882766447", "content": "", "creation_timestamp": "2025-01-14T15:49:56.288454Z"}, {"uuid": "a454d59a-47be-47e4-9fea-88fbe11cd822", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39783", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827498842084648", "content": "", "creation_timestamp": "2025-01-14T15:49:59.476206Z"}, {"uuid": "efed72d7-67f6-4d81-9b1e-2dbf8f3090f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39789", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827499186971506", "content": "", "creation_timestamp": "2025-01-14T15:50:00.526683Z"}, {"uuid": "ec285724-7a2e-4272-a8a2-afd7b5015191", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39782", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfplyps7qa2g", "content": "", "creation_timestamp": "2025-01-14T15:48:18.886482Z"}, {"uuid": "92442c5c-1255-47ea-af7d-bac438072cd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39787", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfplyq2mst2e", "content": "", "creation_timestamp": "2025-01-14T15:48:20.117526Z"}, {"uuid": "8dad3632-fc4a-4e80-8bbd-a24a606b509c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39781", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfplyqkpcs2w", "content": "", "creation_timestamp": "2025-01-14T15:48:22.239712Z"}, {"uuid": "63600c11-26e1-4cc9-b0e7-56323f6d03c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39781", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827498754868883", "content": "", "creation_timestamp": "2025-01-14T15:49:56.330677Z"}, {"uuid": "51af4614-735c-48bd-bacd-813beb89cc92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39785", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827498949600380", "content": "", "creation_timestamp": "2025-01-14T15:49:57.922018Z"}, {"uuid": "8d5a7831-0702-4354-95ef-e21bf0cd67a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39786", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827499009137806", "content": "", "creation_timestamp": "2025-01-14T15:49:58.279923Z"}, {"uuid": "566e110b-21b3-4411-a429-ea08df2080d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39787", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827499076457494", "content": "", "creation_timestamp": "2025-01-14T15:50:00.062694Z"}, {"uuid": "242ce028-579d-4ef8-a5b3-3949c347bed7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39782", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827498800973259", "content": "", "creation_timestamp": "2025-01-14T15:49:59.426292Z"}, {"uuid": "f36492c1-c53b-419b-a688-69fcf5abef49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39788", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113827499145442484", "content": "", "creation_timestamp": "2025-01-14T15:50:02.320909Z"}, {"uuid": "eb4746ec-a664-47bb-9b17-3267a8c789f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39780", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llsznc7g3v2o", "content": "", "creation_timestamp": "2025-04-02T09:01:39.584115Z"}, {"uuid": "b5b29b95-b0d0-4cb9-92f3-e398e218af92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39780", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114267737002428971", "content": "", "creation_timestamp": "2025-04-02T09:48:16.179904Z"}, {"uuid": "e7d67579-ee1f-4314-b800-319182559457", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39780", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114267737002428971", "content": "", "creation_timestamp": "2025-04-02T09:48:16.174965Z"}, {"uuid": "4b1e1c6b-7afe-48d9-962a-415b7ba595d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39780", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3llt73b3fue23", "content": "", "creation_timestamp": "2025-04-02T10:38:54.014669Z"}, {"uuid": "aab8f448-c579-4412-85c9-3ecf694083af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39780", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10114", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39780\n\ud83d\udd25 CVSS Score: 8.4 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: A YAML deserialization vulnerability was found in the Robot Operating System (ROS) 'dynparam', a command-line tool for getting, setting, and deleting parameters of a dynamically configurable node, affecting ROS distributions Noetic and earlier. The issue is caused by the use of the yaml.load() function in the 'set' and 'get' verbs, and allows for the creation of arbitrary Python objects. Through this flaw, a local or remote user can craft and execute arbitrary Python code. This issue has now been fixed for ROS Noetic via commit 3d93ac13603438323d7e9fa74e879e45c5fe2e8e.\n\ud83d\udccf Published: 2025-04-02T07:31:57.906Z\n\ud83d\udccf Modified: 2025-04-02T16:20:24.302Z\n\ud83d\udd17 References:\n1. https://github.com/ros/dynamic_reconfigure/pull/202", "creation_timestamp": "2025-04-02T16:34:36.000000Z"}, {"uuid": "272c7b87-21c1-47ca-b0d3-8296b1e1079b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39780", "type": "seen", "source": "https://t.me/cvedetector/21853", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39780 - ROS dynparam YAML Deserialization Vulnerability (Arbitrary Code Execution)\", \n  \"Content\": \"CVE ID : CVE-2024-39780 \nPublished : April 2, 2025, 8:15 a.m. | 2\u00a0hours ago \nDescription : A YAML deserialization vulnerability was found in the Robot Operating System (ROS) 'dynparam', a command-line tool for getting, setting, and deleting parameters of a dynamically configurable node, affecting ROS distributions Noetic and earlier. The issue is caused by the use of the yaml.load() function in the 'set' and 'get' verbs, and allows for the creation of arbitrary Python objects. Through this flaw, a local or remote user can craft and execute arbitrary Python code. This issue has now been fixed for ROS Noetic via commit 3d93ac13603438323d7e9fa74e879e45c5fe2e8e. \nSeverity: 8.4 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T12:28:39.000000Z"}, {"uuid": "f79e4c74-f7a4-49d9-aa16-001eb103fc56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39782", "type": "seen", "source": "https://t.me/cvedetector/15283", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39782 - Wavlink AC3000 Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39782 \nPublished : Jan. 14, 2025, 3:15 p.m. | 45\u00a0minutes ago \nDescription : Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the `restart_min` POST parameter. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T17:20:33.000000Z"}, {"uuid": "ca23d973-79ba-498c-abbb-06a549cbc49c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39789", "type": "seen", "source": "https://t.me/cvedetector/15282", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39789 - Wavlink NAS Config Injection Permission Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-39789 \nPublished : Jan. 14, 2025, 3:15 p.m. | 45\u00a0minutes ago \nDescription : Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A configuration injection vulnerability exists within the `ftp_port` POST parameter. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T17:20:32.000000Z"}, {"uuid": "6b42a6fb-b84c-4f35-84b7-38401b2451b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39788", "type": "seen", "source": "https://t.me/cvedetector/15281", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39788 - Wavlink AC3000 Nas.cgi FTP Config Control Remote Configuration Injection/Permission Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-39788 \nPublished : Jan. 14, 2025, 3:15 p.m. | 45\u00a0minutes ago \nDescription : Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A configuration injection vulnerability exists within the `ftp_name` POST parameter. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T17:20:31.000000Z"}, {"uuid": "90b1f722-01c0-4874-bad8-32d03af589f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39787", "type": "seen", "source": "https://t.me/cvedetector/15288", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39787 - Wavlink AC3000 Nas.cgi Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39787 \nPublished : Jan. 14, 2025, 3:15 p.m. | 45\u00a0minutes ago \nDescription : Multiple directory traversal vulnerabilities exist in the nas.cgi add_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A directory traversal vulnerability exists within the `disk_part` POST parameter. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T17:20:40.000000Z"}, {"uuid": "6e0baf77-3660-4e86-afe4-26dc581e5748", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39786", "type": "seen", "source": "https://t.me/cvedetector/15287", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39786 - Wavlink AC3000 Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39786 \nPublished : Jan. 14, 2025, 3:15 p.m. | 45\u00a0minutes ago \nDescription : Multiple directory traversal vulnerabilities exist in the nas.cgi add_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A directory traversal vulnerability exists within the `adddir_name` POST parameter. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T17:20:40.000000Z"}, {"uuid": "fb2751a8-8081-44de-9fc9-f96014f73ce3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39785", "type": "seen", "source": "https://t.me/cvedetector/15286", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39785 - \"Wavlink AC3000 NAS.cgi Command Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-39785 \nPublished : Jan. 14, 2025, 3:15 p.m. | 45\u00a0minutes ago \nDescription : Multiple command execution vulnerabilities exist in the nas.cgi add_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the adddir_name POST parameter. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T17:20:39.000000Z"}, {"uuid": "b9a58ba8-679c-4f2e-bd45-7e8dec6e52dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39784", "type": "seen", "source": "https://t.me/cvedetector/15285", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39784 - Wavlink AC3000 Cmd Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39784 \nPublished : Jan. 14, 2025, 3:15 p.m. | 45\u00a0minutes ago \nDescription : Multiple command execution vulnerabilities exist in the nas.cgi add_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the disk_part POST parameter. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T17:20:38.000000Z"}, {"uuid": "f719f692-2c78-4f08-8340-37ae2b41adb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39783", "type": "seen", "source": "https://t.me/cvedetector/15284", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39783 - Wavlink AC3000 Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39783 \nPublished : Jan. 14, 2025, 3:15 p.m. | 45\u00a0minutes ago \nDescription : Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A command injection vulnerability exists in the `restart_week` POST parameter. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T17:20:37.000000Z"}]}