CVE-2021-44259
First published: Thu Mar 17 2022(Updated: )
A vulnerability is in the 'wx.html' page of the WAVLINK AC1200, version WAVLINK-A42W-1.27.6-20180418, which can allow a remote attacker to access this page without any authentication. When an unauthorized user accesses this page directly, it connects to this device as a friend of the device owner.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Wavlink Wl-wn531g3 Firmware | =a42w-1.27.6-20180418 | |
| Wavlink Wl-wn531g3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2021-44259.
What is the severity rating of CVE-2021-44259?
The severity rating of CVE-2021-44259 is critical with a score of 9.8.
How can an attacker exploit this vulnerability?
An attacker can exploit this vulnerability by accessing the 'wx.html' page of the WAVLINK AC1200 without authentication.
Which software versions are affected by CVE-2021-44259?
The WAVLINK AC1200 version WAVLINK-A42W-1.27.6-20180418 is affected by CVE-2021-44259.
Is the Wavlink Wl-wn531g3 device vulnerable to CVE-2021-44259?
No, the Wavlink Wl-wn531g3 device is not vulnerable to CVE-2021-44259.
- collector/nvd-index
- agent/weakness
- agent/tags
- agent/type
- agent/event
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/wavlink
- canonical/wavlink wl-wn531g3 firmware
- version/wavlink wl-wn531g3 firmware/a42w-1.27.6-20180418
- canonical/wavlink wl-wn531g3