CVE-2022-40622
The CVE-2022-40622 entry concerns WAVLINK Quantum D4G (WN531G3) firmware M31G3.V5030.200325, where the device uses IP addresses to maintain sessions and does not employ session tokens. This design enables session takeover if an attacker can match the administrator’s IP or share a NAT, as describe...