VYPR
Unrated severityNVD Advisory· Published Jan 24, 2024· Updated Jun 20, 2025

CVE-2024-22366

CVE-2024-22366

Description

Active debug code exists in Yamaha wireless LAN access point devices. If a logged-in user who knows how to use the debug function accesses the device's management page, this function can be enabled by performing specific operations. As a result, an arbitrary OS command may be executed and/or configuration settings of the device may be altered. Affected products and versions are as follows: WLX222 firmware Rev.24.00.03 and earlier, WLX413 firmware Rev.22.00.05 and earlier, WLX212 firmware Rev.21.00.12 and earlier, WLX313 firmware Rev.18.00.12 and earlier, and WLX202 firmware Rev.16.00.18 and earlier.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • Yamaha/WLX222llm-create
    Range: <= Rev.24.00.03
  • Yamaha/WLX413llm-create
    Range: <= Rev.22.00.05
  • Yamaha/WLX212llm-create
    Range: <= Rev.21.00.12
  • Yamaha/WLX313llm-create
    Range: <= Rev.18.00.12
  • Yamaha/WLX202llm-create
    Range: <= Rev.16.00.18
  • Yamaha Corporation/WLX202v5
    Range: firmware Rev.16.00.18 and earlier
  • Yamaha Corporation/WLX212v5
    Range: firmware Rev.21.00.12 and earlier
  • Yamaha Corporation/WLX222v5
    Range: firmware Rev.24.00.03 and earlier
  • Yamaha Corporation/WLX313v5
    Range: firmware Rev.18.00.12 and earlier
  • Yamaha Corporation/WLX413v5
    Range: firmware Rev.22.00.05 and earlier

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.