Unrated severityNVD Advisory· Published Sep 13, 2022· Updated Sep 17, 2024

WAVLINK Quantum D4G (WN531G3) CSRF

CVE-2022-40623

Description

The WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 does not utilize anti-CSRF tokens, which, when combined with other issues (such as CVE-2022-35518), can lead to remote, unauthenticated command execution.

Affected products

Wavlink/QUANTUM D3Gllm-fuzzy
Range: = M31G3.V5030.200325
Wavlink/WL-WN531G3cpe-rescue
Range: M31G3.V5030.200325

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

youtu.be/cSileV8YbsQmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000