Lucene search

[email protected]CVE-2022-34049

HistoryJul 20, 2022 - 5:15 p.m.

CVE-2022-34049

2022-07-2017:15:08

CWE-552

[email protected]

web.nvd.nist.gov

cve-2022-34049

access control

wavlink wn530hg4

m30hg4.v5030.191116

unauthenticated attackers

log files

configuration data

nvd

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.3 Medium

AI Score

Confidence

High

0.253 Low

EPSS

Percentile

96.7%

JSON

An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows unauthenticated attackers to download log files and configuration data.

Affected configurations

NVD

Node

wavlinkwl-wn530hg4_firmwareMatchm30hg4.v5030.191116

AND

wavlinkwl-wn530hg4Match-

CPENameOperatorVersion
wavlink:wl-wn530hg4_firmwarewavlink wl-wn530hg4 firmwareeqm30hg4.v5030.191116

CPE	Name	Operator	Version
wavlink:wl-wn530hg4_firmware	wavlink wl-wn530hg4 firmware	eq	m30hg4.v5030.191116

References

drive.google.com/file/d/1-eNgq6IS609bq2vB93c_N8jnZrJ2dgNF/view?usp=sharing

drive.google.com/file/d/1ZeSwqu04OghLQXeG7emU-w-Amgadafqx/view?usp=sharing

Social References

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.3 Medium

AI Score

Confidence

High

0.253 Low

EPSS

Percentile

96.7%

JSON

Related for CVE-2022-34049

nvd1 cvelist1 nuclei1 prion1