M31G3.V5030.201204

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

wavlink

CWE-552

NVD

Published: 2022-11-29

Updated: 2022-12-02

Summary

WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files.

Vulnerable Configurations

Part	Description	Count
OS	Wavlink Wavlink WL Wn531G3 Firmware M31G3.V5030.200325 Wavlink WL Wn531G3 Firmware M31G3.V5030.201204	2
Hardware	Wavlink Wavlink WL Wn531G3 -	1

Common Weakness Enumeration (CWE)

CWE-552 - Files or Directories Accessible to External Parties

References

https://github.com/strik3r0x1/Vulns/blob/main/Wavlink%20WL-WN531G3.md