CVE-2022-48164
Summary:
WAVLINK QUANTUM T8 - AC3000 MU-MIMO Tri-band (WL-WN533A8) devices running firmware version (M33A8.V5030.190716) have an access control issue, allowing unauthenticated attackers to download configuration data and log files and obtain admin credentials.
Vendor:
Wavlink
Affected Product:
WL-WN533A8
Version:
M33A8.V5030.190716
Details:
When an unauthenticated attacker requests /cgi-bin/ExportLogs.sh this will lead to downloading all configurations and Admin Credentials and accessing the Device Dashboard
POC
Last updated
Was this helpful?