Wavlink Wl-Wn531G3 Firmware vulnerabilities
3 known vulnerabilities affecting wavlink/wl-wn531g3_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2
Vulnerabilities
Page 1 of 1
CVE-2021-44260P2HIGHCVSS 7.5PoCva42w-1.27.6-201804182022-03-17
CVE-2021-44260 [HIGH] CWE-306 CVE-2021-44260: A vulnerability is in the 'live_mfg.html' page of the WAVLINK AC1200, version WAVLINK-A42W-1.27.6-20
A vulnerability is in the 'live_mfg.html' page of the WAVLINK AC1200, version WAVLINK-A42W-1.27.6-20180418, which can allow a remote attacker to access this page without any authentication. When processed, it exposes some key information of the manager of router.
nvd
CVE-2022-44356P2HIGHCVSS 7.5PoCvm31g3.v5030.200325vm31g3.v5030.2012042022-11-29
CVE-2022-44356 [HIGH] CWE-552 CVE-2022-44356: WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325
WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files.
nvd
CVE-2021-44259P3CRITICALCVSS 9.8va42w-1.27.6-201804182022-03-17
CVE-2021-44259 [CRITICAL] CWE-306 CVE-2021-44259: A vulnerability is in the 'wx.html' page of the WAVLINK AC1200, version WAVLINK-A42W-1.27.6-20180418
A vulnerability is in the 'wx.html' page of the WAVLINK AC1200, version WAVLINK-A42W-1.27.6-20180418, which can allow a remote attacker to access this page without any authentication. When an unauthorized user accesses this page directly, it connects to this device as a friend of the device owner.
nvd