CVE-2022-48164

Summary:

WAVLINK QUANTUM T8 - AC3000 MU-MIMO Tri-band (WL-WN533A8) devices running firmware version (M33A8.V5030.190716) have an access control issue, allowing unauthenticated attackers to download configuration data and log files and obtain admin credentials.

Vendor:

Wavlink

Affected Product:

WL-WN533A8

Version:

M33A8.V5030.190716

Details:

When an unauthenticated attacker requests /cgi-bin/ExportLogs.sh this will lead to downloading all configurations and Admin Credentials and accessing the Device Dashboard

POC

PreviousCVE-2022-44356 NextCVE-2022-48165

Last updated 1 year ago