Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Nuclei
Nucleiadded yesterday19 views

WAVLINK Quantum D4G (WL-WN531G3) - Information Disclosure

WAVLINK Quantum D4G WL-WN531G3 running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files. id: CVE-2022-44356 info: name: WAVLINK Quantum D4G WL-WN531G3 - Information Disclosur...

7.5CVSS7.2AI score0.47061EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2022-43895

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.0031EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-43897

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00294EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 12:6 a.m.3 views

CVE-2022-44356

WAVLINK Quantum D4G WL-WN531G3 running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files...

7.5CVSS7.1AI score0.47061EPSS
Exploits1References1
NVD
NVDadded 2022/11/29 5:15 p.m.28 views

CVE-2022-44356

WAVLINK Quantum D4G WL-WN531G3 running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files...

7.5CVSS0.47061EPSS
Exploits1References1
OSV
OSVadded 2022/11/29 5:15 p.m.1 views

CVE-2022-44356

WAVLINK Quantum D4G WL-WN531G3 running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files...

7.5CVSS5.8AI score
Exploits0References1
Prion
Prionadded 2022/11/29 5:15 p.m.29 views

Design/Logic Flaw

WAVLINK Quantum D4G WL-WN531G3 running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files...

5CVSS7.6AI score0.47061EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2022/11/29 12:0 a.m.16 views

CVE-2022-44356

WAVLINK Quantum D4G WL-WN531G3 running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files...

7.8AI score0.47061EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2022/11/29 12:0 a.m.4 views

CVE-2022-44356

WAVLINK Quantum D4G WL-WN531G3 running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files...

7.8AI score0.47061EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2022/11/29 12:0 a.m.2 views

PT-2022-27192 · Wavlink · Wavlink Quantum D4G

Name of the Vulnerable Software and Affected Versions: WAVLINK Quantum D4G WL-WN531G3 versions M31G3.V5030.200325 through M31G3.V5030.201204 Description: The issue allows unauthenticated attackers to download configuration data and log files due to an access control problem. Recommendations: For...

7.5CVSS7.5AI score0.47061EPSS
Exploits1References5
CVE
CVEadded 2022/11/29 12:0 a.m.58 views

CVE-2022-44356

WAVLINK Quantum D4G WL-WN531G3 firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 have an access control issue that enables unauthenticated attackers to download configuration data and log files. The NUCLEI template confirms this is an information-disclosure vulnerability caused by impro...

7.5CVSS7.5AI score0.47061EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2022/09/13 9:15 p.m.13 views

CVE-2022-40623

The WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 does not utilize anti-CSRF tokens, which, when combined with other issues such as CVE-2022-35518, can lead to remote, unauthenticated command execution...

8.8CVSS0.00294EPSS
Exploits1References1
NVD
NVDadded 2022/09/13 9:15 p.m.7 views

CVE-2022-40621

Because the WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 and earlier communicates over HTTP and not HTTPS, and because the hashing mechanism does not rely on a server-supplied key, it is possible for an attacker with sufficient network access to capture the hashed...

7.5CVSS0.0031EPSS
Exploits1References1
OSV
OSVadded 2022/09/13 9:15 p.m.0 views

CVE-2022-40621

Because the WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 and earlier communicates over HTTP and not HTTPS, and because the hashing mechanism does not rely on a server-supplied key, it is possible for an attacker with sufficient network access to capture the hashed...

7.5CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2022/09/13 9:15 p.m.0 views

CVE-2022-40623

The WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 does not utilize anti-CSRF tokens, which, when combined with other issues such as CVE-2022-35518, can lead to remote, unauthenticated command execution...

8.8CVSS5.8AI score0.00294EPSS
Exploits1References1
NVD
NVDadded 2022/09/13 9:15 p.m.7 views

CVE-2022-40622

The WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 uses IP addresses to hold sessions and does not not use session tokens. Therefore, if an attacker changes their IP address to match the logged-in administrator's, or is behind the same NAT as the logged in administrator,...

8.8CVSS0.00103EPSS
Exploits1References1
Prion
Prionadded 2022/09/13 9:15 p.m.11 views

Code injection

The WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 uses IP addresses to hold sessions and does not not use session tokens. Therefore, if an attacker changes their IP address to match the logged-in administrator's, or is behind the same NAT as the logged in administrator,...

5.8CVSS8.6AI score0.00103EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2022/09/13 9:15 p.m.15 views

Design/Logic Flaw

Because the WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 and earlier communicates over HTTP and not HTTPS, and because the hashing mechanism does not rely on a server-supplied key, it is possible for an attacker with sufficient network access to capture the hashed...

4.6CVSS7.5AI score0.0031EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2022/09/13 9:15 p.m.11 views

Cross site request forgery (csrf)

The WAVLINK Quantum D4G WN531G3 running firmware version M31G3.V5030.200325 does not utilize anti-CSRF tokens, which, when combined with other issues such as CVE-2022-35518, can lead to remote, unauthenticated command execution...

6.8CVSS9.5AI score0.03867EPSS
Exploits2References1Affected Software1
CVE
CVEadded 2022/09/13 8:35 p.m.56 views

CVE-2022-40623

CVE-2022-40623 affects WAVLINK Quantum D4G (WN531G3) firmware M31G3.V5030.200325, describing a lack of anti-CSRF tokens in the device’s web interface. The entry also notes that exploitation can occur when combined with CVE-2022-35518 (command injection via nas.cgi), suggesting a scenario for remo...

8.8CVSS9.5AI score0.00294EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder