Published: 27/10/2022 Updated: 01/11/2022

CVSS v3 Base Score: 6.8 | Impact Score: 5.9 | Exploitability Score: 0.9

VMScore: 0

gl-inet GL-MT300N-V2 Mango v3.212 and GL-AX1800 Flint v3.214 were discovered to contain multiple command injection vulnerabilities via the ping_addr and trace_addr function parameters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gl-inet gl-mt300n-v2_firmware 3.212
gl-inet gl-ax1800_firmware 3.214

Check Point Reference: CPAI-2022-2032 Date Published: 12 Mar 2024 Severity: Medium ...

Exploit POC code for CVE-2022-31898, a command injection for GL-iNet routers with firmware below 3.215

cve-2022-31898 Exploit POC code for CVE-2022-31898, a command injection for GL-iNet routers with firmware below 3215 Usage /cve-2022-31898py -h usage: cve-2022-31898py [-h] -R RHOST [-P RPORT] -L LHOST [-l LPORT] [-p PWD] [-t] options: -h, --help show this help message and exit -R RHOST, --rhost RHOST IP/hostname of Mango router -P

CWE-78 https://boschko.ca/glinet-router https://nvd.nist.gov https://github.com/gigaryte/cve-2022-31898 https://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2022-2032.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-31898

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect