Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wavlink vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-40622
The WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 uses IP addresses to hold sessions and does not not use session tokens. Therefore, if an attacker changes their IP address to match the logged-in administrator's, or is behind the same NAT as the l...
Wavlink Wn531g3 Firmware
7.5
CVSSv3
CVE-2022-31845
A vulnerability in live_check.shtml of WAVLINK WN535 G3 M35G3R.V5030.180927 allows malicious users to obtain sensitive router information via execution of the exec cmd function.
Wavlink Wn535g3 Firmware M35g3r.v5030.180927
7.5
CVSSv3
CVE-2022-31846
A vulnerability in live_mfg.shtml of WAVLINK WN535 G3 M35G3R.V5030.180927 allows malicious users to obtain sensitive router information via execution of the exec cmd function.
Wavlink Wn535g3 Firmware M35g3r.v5030.180927
7.5
CVSSv3
CVE-2022-34576
A vulnerability in /cgi-bin/ExportAllSettings.sh of WAVLINK WN535 G3 M35G3R.V5030.180927 allows malicious users to execute arbitrary code via a crafted POST request.
Wavlink Wn535g3 Firmware M35g3r.v5030.180927
9.8
CVSSv3
CVE-2022-34577
A vulnerability in adm.cgi of WAVLINK WN535 G3 M35G3R.V5030.180927 allows malicious users to execute arbitrary code via a crafted POST request.
Wavlink Wn535g3 Firmware M35g3r.v5030.180927
7.2
CVSSv3
CVE-2023-32612
Client-side enforcement of server-side security issue exists in WL-WN531AX2 firmware versions before 2023526, which may allow an attacker with an administrative privilege to execute OS commands with the root privilege.
Wavlink Wl-wn531ax2 Firmware
8.1
CVSSv3
CVE-2023-32613
Exposure of resource to wrong sphere issue exists in WL-WN531AX2 firmware versions before 2023526, which may allow a network-adjacent malicious user to use functions originally available after login without logging in.
Wavlink Wl-wn531ax2 Firmware
6.5
CVSSv3
CVE-2023-32620
Improper authentication vulnerability in WL-WN531AX2 firmware versions before 2023526 allows a network-adjacent malicious user to obtain a password for the wireless network.
Wavlink Wl-wn531ax2 Firmware
7.2
CVSSv3
CVE-2023-32621
WL-WN531AX2 firmware versions before 2023526 allows an attacker with an administrative privilege to upload arbitrary files and execute OS commands with the root privilege.
Wavlink Wl-wn531ax2 Firmware
7.2
CVSSv3
CVE-2023-32622
Improper neutralization of special elements in WL-WN531AX2 firmware versions before 2023526 allows an attacker with an administrative privilege to execute OS commands with the root privilege.
Wavlink Wl-wn531ax2 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »