Lucene search
+L

8 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 9:18 p.m.18 views

CVE-2022-2488

A vulnerability was found in WAVLINK WN535K2 and WN535K3 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/touchlistsync.cgi. The manipulation of the argument IP leads to os command injection. The exploit has been disclosed to the public and may be used...

9.8CVSS7.2AI score0.32947EPSS
Exploits1References1
Talos
Talos
added 2025/01/14 12:0 a.m.16 views

Wavlink AC3000 touchlist_sync.cgi main() arbitrary code execution vulnerability

Talos Vulnerability Report TALOS-2024-1999 Wavlink AC3000 touchlistsync.cgi main arbitrary code execution vulnerability January 14, 2025 CVE Number CVE-2022-2488 SUMMARY An arbitrary code execution vulnerability exists in the touchlistsync.cgi main functionality of Wavlink AC3000...

9.8CVSS8AI score0.32947EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2022/11/06 12:0 a.m.101 views

Wavlink Routers Command Injection (CVE-2022-2486; CVE-2022-2488)

A command injection vulnerability exists in Wavlink Routers. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

7.9AI score0.32947EPSS
Exploits2
Circl
Circl
added 2022/07/20 4:20 p.m.25 views

CVE-2022-2488

creationtimestamp| type| source ---|---|--- 2022-07-20 16:20:00+00:00| seen| https://t.me/cibsecurity/46642 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-01-31 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-31...

9.8CVSS7.3AI score0.32947EPSS
In wildExploits1References4
NVD
NVD
added 2022/07/20 12:15 p.m.45 views

CVE-2022-2488

A vulnerability was found in WAVLINK WN535K2 and WN535K3 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/touchlistsync.cgi. The manipulation of the argument IP leads to os command injection. The exploit has been disclosed to the public and may be used...

9.8CVSS0.32947EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/07/20 11:35 a.m.49 views

CVE-2022-2488 WAVLINK WN535K2/WN535K3 touchlist_sync.cgi os command injection

A vulnerability was found in WAVLINK WN535K2 and WN535K3 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/touchlistsync.cgi. The manipulation of the argument IP leads to os command injection. The exploit has been disclosed to the public and may be used...

8CVSS10AI score0.32947EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/07/20 11:35 a.m.9 views

CVE-2022-2488 WAVLINK WN535K2/WN535K3 touchlist_sync.cgi os command injection

A vulnerability was found in WAVLINK WN535K2 and WN535K3 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/touchlistsync.cgi. The manipulation of the argument IP leads to os command injection. The exploit has been disclosed to the public and may be used...

8CVSS7.7AI score0.32947EPSS
Exploits1References2
CVE
CVE
added 2022/07/20 11:35 a.m.173 views

CVE-2022-2488

Summary: CVE-2022-2488 affects WAVLINK WN535K2 and WN535K3 routers. The issue is an OS command injection in the web endpoint /cgi-bin/touchlist_sync.cgi triggered by manipulating the IP parameter. Affected software: WAVLINK WN535K2/WN535K3 (router firmware). Root cause / vulnerability detail (as ...

9.8CVSS9.2AI score0.32947EPSS
In wildExploits1References3Affected Software1
Rows per page
Query Builder