QUANTUM D3G

CVEs (5)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2025-5408	Wavlink QUANTUM D3G	Cri	0.64	9.8	0.01	Jun 1, 2025	A vulnerability was found in WAVLINK QUANTUM D2G, QUANTUM D3G, WL-WN530G3A, WL-WN530HG3, WL-WN532A3 and WL-WN576K1 up to V1410_240222 and classified as critical. Affected by this issue is the function sys_login of the file /cgi-bin/login.cgi of the component HTTP POST Request…
CVE-2025-61128	Wavlink WL-WN530H4	Cri	0.59	9.1	0.00	Oct 28, 2025	Stack-based buffer overflow vulnerability in WAVLINK QUANTUM D3G/WL-WN530HG3 firmware M30HG3_V240730, and possibly other wavlink models allows attackers to execute arbitrary code via crafted referrer value POST to login.cgi.
CVE-2023-30313	Wavlink QUANTUM D3G	Hig	0.49	7.5	0.00	May 28, 2024	An issue discovered in Wavlink QUANTUM D2G routers allows attackers to hijack TCP sessions which could lead to a denial of service.
CVE-2022-44356	Wavlink QUANTUM D3G		0.04	—	0.47	Nov 29, 2022	WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files.
CVE-2022-40623	Wavlink QUANTUM D3G		0.00	—	0.00	Sep 13, 2022	The WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 does not utilize anti-CSRF tokens, which, when combined with other issues (such as CVE-2022-35518), can lead to remote, unauthenticated command execution.

CVE-2025-5408CriJun 1, 2025
Wavlink
QUANTUM D3G
risk 0.64cvss 9.8epss 0.01
A vulnerability was found in WAVLINK QUANTUM D2G, QUANTUM D3G, WL-WN530G3A, WL-WN530HG3, WL-WN532A3 and WL-WN576K1 up to V1410_240222 and classified as critical. Affected by this issue is the function sys_login of the file /cgi-bin/login.cgi of the component HTTP POST Request…
CVE-2025-61128CriOct 28, 2025
Wavlink
WL-WN530H4
risk 0.59cvss 9.1epss 0.00
Stack-based buffer overflow vulnerability in WAVLINK QUANTUM D3G/WL-WN530HG3 firmware M30HG3_V240730, and possibly other wavlink models allows attackers to execute arbitrary code via crafted referrer value POST to login.cgi.
CVE-2023-30313HigMay 28, 2024
Wavlink
QUANTUM D3G
risk 0.49cvss 7.5epss 0.00
An issue discovered in Wavlink QUANTUM D2G routers allows attackers to hijack TCP sessions which could lead to a denial of service.
CVE-2022-44356Nov 29, 2022
Wavlink
QUANTUM D3G
risk 0.04cvss —epss 0.47
WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files.
CVE-2022-40623Sep 13, 2022
Wavlink
QUANTUM D3G
risk 0.00cvss —epss 0.00
The WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 does not utilize anti-CSRF tokens, which, when combined with other issues (such as CVE-2022-35518), can lead to remote, unauthenticated command execution.