Vulnerability Description
A vulnerability in adm.cgi of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wavlink | Wn535G3 Firmware | m35g3r.v5030.180927 |
| Wavlink | Wn535G3 | - |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31311Third Party AdvisoryVDB Entry
- https://github.com/pghuanghui/CVE_Request/blob/main/WAVLINK%20WN535%20G3_CommandExploitThird Party Advisory
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31311Third Party AdvisoryVDB Entry
- https://github.com/pghuanghui/CVE_Request/blob/main/WAVLINK%20WN535%20G3_CommandExploitThird Party Advisory
FAQ
What is CVE-2022-34577?
CVE-2022-34577 is a vulnerability with a CVSS score of 9.8 (CRITICAL). A vulnerability in adm.cgi of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to execute arbitrary code via a crafted POST request.
How severe is CVE-2022-34577?
CVE-2022-34577 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-34577?
Check the references section above for vendor advisories and patch information. Affected products include: Wavlink Wn535G3 Firmware, Wavlink Wn535G3.