.. / CVE-2022-34049

Exploit for WAVLINK WN530HG4 - Improper Access Control (CVE-2022-34049)

Description:

Wavlink WN530HG4 M30HG4.V5030.191116 is susceptible to improper access control. An attacker can download log files and configuration data via Exportlogs.sh and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.

Nuclei Template

View the template here CVE-2022-34049.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-34049.yaml
Copy

References:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34049
https://drive.google.com/file/d/1ZeSwqu04OghLQXeG7emU-w-Amgadafqx/view?usp=sharing
https://nvd.nist.gov/vuln/detail/CVE-2022-34049
https://drive.google.com/file/d/1-eNgq6IS609bq2vB93c_N8jnZrJ2dgNF/view
https://drive.google.com/file/d/1-eNgq6IS609bq2vB93c_N8jnZrJ2dgNF/view?usp=sharing