First published: Tue Nov 29 2022(Updated: )
WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Wavlink Wl-wn531g3 Firmware | =m31g3.v5030.200325 | |
Wavlink Wl-wn531g3 Firmware | =m31g3.v5030.201204 | |
Wavlink Wl-wn531g3 | ||
All of | ||
Any of | ||
Wavlink Wl-wn531g3 Firmware | =m31g3.v5030.200325 | |
Wavlink Wl-wn531g3 Firmware | =m31g3.v5030.201204 | |
Wavlink Wl-wn531g3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-44356 is high with a CVSS score of 7.5.
CVE-2022-44356 allows unauthenticated attackers to download configuration data and log files on WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325.
WAVLINK Quantum D4G (WL-WN531G3) firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 are affected by CVE-2022-44356.
Unauthenticated attackers can exploit CVE-2022-44356 to gain access to configuration data and log files without needing proper authentication.
At the moment, there is no known fix for CVE-2022-44356. It is recommended to regularly check for firmware updates from the manufacturer.