Wavlink WL-WN579A3 Command Injection Vulnerability

A command injection vulnerability has been identified in the Wavlink WL-WN579A3 wireless router, specifically in versions prior to 20210219. The issue arises in the 'multi_ssid' function within the '/cgi-bin/wireless.cgi' file. The vulnerability can be exploited remotely by manipulating the 'SSID2G2' parameter, allowing attackers to execute arbitrary commands on the device.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the affected device.

Reproduction

To reproduce this vulnerability, send a POST request to '/cgi-bin/wireless.cgi' with the 'page' parameter set to 'multi_ssid', the 'wifi_multi_ssid' parameter set to '1', and the 'SSID2G2' parameter containing the command to be executed. The device will execute the command and, depending on the payload, could write the output to a file or perform other actions.