S4E

CVE-2022-34576 Scanner

Detects 'Code Injection' vulnerability in WAVLINK WN535 G3 affects v. M35G3R.V5030.180927.

Short Info


Level

High

Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

1 month

Scan only one

URL

Toolbox

-

WAVLINK WN535 G3 is a wireless router designed for homes and small offices to provide a stable and fast internet connection. Its advanced features such as QoS, guest network, and parental control make it a popular choice among users. The router also comes with multiple ports for wired connections, including one WAN port and four LAN ports. Its compact size and sleek design make it easy to install and blend with the interiors.

However, despite the various features that make it a popular choice, the WAVLINK WN535 G3 is vulnerable to a serious security flaw - CVE-2022-34576. This vulnerability relates to the /cgi-bin/ExportAllSettings.sh script that can be exploited by attackers to execute arbitrary code by sending a crafted POST request. As a result, an attacker can gain unauthorized access to sensitive information, install malicious software, or even take control of the device.

Exploitation of this vulnerability can lead to serious consequences, including data theft, privacy breaches, and network disruption. Attackers can easily gain access to usernames, passwords, and other confidential information, leading to identity theft or financial loss. Additionally, the attacker can install malware or ransomware on the router, causing network-wide disruption and even rendering the router unusable.

At s4e.io, we offer a comprehensive platform that provides detailed and up-to-date information on vulnerabilities affecting digital assets, including routers. With the platform's pro features, users can easily and quickly learn about potential security threats affecting their devices and networks. By subscribing to our service, you can enjoy advanced features such as vulnerability scans, real-time alerts, and detailed reports to stay on top of the latest security threats. Stay secure with s4e.io.

 

REFERENCES

Get started to protecting your Free Full Security Scan