CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-44868

Wavlink WL-WN530H4 20220801 was found to contain a command injection vulnerability in the ping_test function of the adm.cgi via the pingIp parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.8%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/Summermu/VulnForIoT/tree/main/Wavlink_WL-WN530H4/ping_test/readme.md
https://github.com/Summermu/VulnForIoT/blob/main/Wavlink_WL-WN530H4/ping_test/readme.md

Products affected by CVE-2025-44868

Wavlink » Wl-Wn530h4 » Version: N/A

cpe:2.3:h:wavlink:wl-wn530h4:-
Wavlink » Wl-Wn530h4 Firmware » Version: 20220801

cpe:2.3:o:wavlink:wl-wn530h4_firmware:20220801

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-44868

Products

Pricing

Contact Us