CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

28 matches found

WAVLINK Quantum D4G (WL-WN531G3) - Information Disclosure

WAVLINK Quantum D4G WL-WN531G3 running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files. id: CVE-2022-44356 info: name: WAVLINK Quantum D4G WL-WN531G3 - Information Disclosur...

7.5CVSS7.1AI score0.02756EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•8 views

EUVD-2022-43895

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00694EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-43897

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00547EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:6 a.m.•5 views

CVE-2022-44356

7.5CVSS7.1AI score0.02756EPSS

Exploits1References1

OSV•added 2022/11/29 5:15 p.m.•2 views

CVE-2022-44356

7.5CVSS5.8AI score

Exploits0References1

NVD•added 2022/11/29 5:15 p.m.•33 views

CVE-2022-44356

7.5CVSS0.02756EPSS

Exploits1References1

Prion•added 2022/11/29 5:15 p.m.•33 views

Design/Logic Flaw

5CVSS7.6AI score0.02756EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2022/11/29 12:0 a.m.•5 views

CVE-2022-44356

7.8AI score0.02756EPSS

Exploits1References1

Cvelist•added 2022/11/29 12:0 a.m.•26 views

CVE-2022-44356

7.8AI score0.02756EPSS

Exploits1References1

Positive Technologies•added 2022/11/29 12:0 a.m.•4 views

PT-2022-27192 · Wavlink · Wavlink Quantum D4G

Name of the Vulnerable Software and Affected Versions: WAVLINK Quantum D4G WL-WN531G3 versions M31G3.V5030.200325 through M31G3.V5030.201204 Description: The issue allows unauthenticated attackers to download configuration data and log files due to an access control problem. Recommendations: For...

7.5CVSS7.5AI score0.02756EPSS

Exploits1References5

CVE•added 2022/11/29 12:0 a.m.•66 views

CVE-2022-44356

WAVLINK Quantum D4G WL-WN531G3 firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 have an access control issue that enables unauthenticated attackers to download configuration data and log files. The NUCLEI template confirms this is an information-disclosure vulnerability caused by impro...

7.5CVSS7.5AI score0.02756EPSS

Exploits1References1Affected Software1

OSV•added 2022/09/13 9:15 p.m.•2 views

CVE-2022-40621

Because the WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 and earlier communicates over HTTP and not HTTPS, and because the hashing mechanism does not rely on a server-supplied key, it is possible for an attacker with sufficient network access to capture the hashed...

7.5CVSS5.8AI score

Exploits0References1

OSV•added 2022/09/13 9:15 p.m.•2 views

CVE-2022-40623

The WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 does not utilize anti-CSRF tokens, which, when combined with other issues such as CVE-2022-35518, can lead to remote, unauthenticated command execution...

8.8CVSS5.8AI score0.00547EPSS

Exploits1References1

NVD•added 2022/09/13 9:15 p.m.•16 views

CVE-2022-40623

8.8CVSS0.00547EPSS

Exploits1References1

NVD•added 2022/09/13 9:15 p.m.•9 views

CVE-2022-40622

The WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 uses IP addresses to hold sessions and does not not use session tokens. Therefore, if an attacker changes their IP address to match the logged-in administrator's, or is behind the same NAT as the logged in administrator,...

8.8CVSS0.007EPSS

Exploits1References1

NVD•added 2022/09/13 9:15 p.m.•9 views

CVE-2022-40621

7.5CVSS0.00694EPSS

Exploits1References1

Prion•added 2022/09/13 9:15 p.m.•21 views

Design/Logic Flaw

4.6CVSS7.5AI score0.00694EPSS

Exploits1References1Affected Software1

Prion•added 2022/09/13 9:15 p.m.•16 views

Cross site request forgery (csrf)