CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-35518

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 nas.cgi has no filtering on parameters: User1Passwd and User1, which leads to command injection in page /nas_disk.shtml.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.2%

CVSS Severity

CVSS v3 Score 9.8

References

Products affected by CVE-2022-35518

Wavlink » Wn530h4 » Version: N/A

cpe:2.3:h:wavlink:wn530h4:-
Wavlink » Wn531p3 » Version: N/A

cpe:2.3:h:wavlink:wn531p3:-
Wavlink » Wn533a8 » Version: N/A

cpe:2.3:h:wavlink:wn533a8:-
Wavlink » Wn535g3 » Version: N/A

cpe:2.3:h:wavlink:wn535g3:-
Wavlink » Wn572hp3 » Version: N/A

cpe:2.3:h:wavlink:wn572hp3:-
Wavlink » Wn530h4 Firmware » Version: N/A

cpe:2.3:o:wavlink:wn530h4_firmware:-
Wavlink » Wn531p3 Firmware » Version: N/A

cpe:2.3:o:wavlink:wn531p3_firmware:-
Wavlink » Wn533a8 Firmware » Version: N/A

cpe:2.3:o:wavlink:wn533a8_firmware:-
Wavlink » Wn535g3 Firmware » Version: N/A

cpe:2.3:o:wavlink:wn535g3_firmware:-
Wavlink » Wn572hp3 Firmware » Version: N/A

cpe:2.3:o:wavlink:wn572hp3_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-35518

Products

Pricing

Contact Us