CVE-2022-48166
Description
An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Wavlink WL-WN530HG4 router with firmware M30HG4.V5030.201217 allows unauthenticated download of configuration and log files, revealing admin credentials.
Vulnerability
An access control issue exists in the Wavlink WL-WN530HG4 AC1200 router running firmware version M30HG4.V5030.201217. The /cgi-bin/ExportLogs.sh endpoint is exposed without any authentication, allowing an unauthenticated remote attacker to download sensitive configuration data and log files. The vulnerability is described in [1].
Exploitation
An attacker with network access to the router can simply send a GET request to /cgi-bin/ExportLogs.sh. No authentication, user interaction, or prior access is required. The router responds with the contents of configuration files and logs, including plaintext admin credentials [1].
Impact
Successful exploitation results in full disclosure of the router's configuration data and administrative credentials. An attacker can then log into the device's web dashboard with admin privileges, potentially gaining full control over the router's settings and network traffic [1].
Mitigation
The vendor Wavlink has not released a patched firmware version as of the publication date (2023-02-06) [1]. Users should consider replacing the device with a supported model if no update is provided, or restrict network access to the management interface to trusted hosts only.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.