CVE-2022-34576 Scanner
Detects 'Code Injection' vulnerability in WAVLINK WN535 G3 affects v. M35G3R.V5030.180927.
Short Info
Level
High
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
1 month
Scan only one
URL
Toolbox
-
WAVLINK WN535 G3 is a wireless router designed for homes and small offices to provide a stable and fast internet connection. Its advanced features such as QoS, guest network, and parental control make it a popular choice among users. The router also comes with multiple ports for wired connections, including one WAN port and four LAN ports. Its compact size and sleek design make it easy to install and blend with the interiors.
However, despite the various features that make it a popular choice, the WAVLINK WN535 G3 is vulnerable to a serious security flaw - CVE-2022-34576. This vulnerability relates to the /cgi-bin/ExportAllSettings.sh script that can be exploited by attackers to execute arbitrary code by sending a crafted POST request. As a result, an attacker can gain unauthorized access to sensitive information, install malicious software, or even take control of the device.
Exploitation of this vulnerability can lead to serious consequences, including data theft, privacy breaches, and network disruption. Attackers can easily gain access to usernames, passwords, and other confidential information, leading to identity theft or financial loss. Additionally, the attacker can install malware or ransomware on the router, causing network-wide disruption and even rendering the router unusable.
At s4e.io, we offer a comprehensive platform that provides detailed and up-to-date information on vulnerabilities affecting digital assets, including routers. With the platform's pro features, users can easily and quickly learn about potential security threats affecting their devices and networks. By subscribing to our service, you can enjoy advanced features such as vulnerability scans, real-time alerts, and detailed reports to stay on top of the latest security threats. Stay secure with s4e.io.
REFERENCES