CVE-2022-31308

Published: Jun 14, 2022Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A vulnerability in live_mfg.shtml of WAVLINK AERIAL X 1200M M79X3.V5030.191012 allows attackers to obtain sensitive router information via execution of the exec cmd function.

Affected (1)

Products: Wavlink: Aerial X 1200m Firmware

Wavlink

1 product

Aerial X 1200m Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Wavlink Aerial X 1200m Firmware	Version m79x3.v5030.180719

Running on/with	Platform Versions
Wavlink Aerial X 1200m	All versions

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

https://github.com/pghuanghui/CVE_Request/blob/main/WAVLINK%20AC1200.md

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/pghuanghui/CVE_Request/blob/main/WAVLINK%20AC1200.md

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.