← back
CVE-2022-34046

CVE-2022-34046

EPSS 16.6%
An access control issue in Wavlink WN533A8 M33A8.V5030.190716 allows attackers to obtain usernames and passwords via view-source:http://IP_ADDRESS/sysinit.shtml?r=52300 and searching for [logincheck(user);].
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/167890/Wavlink-WN533A8-Password-Disclosure.htmlunverifiedexploitdbwww.exploit-db.com/exploits/50990unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/167890/Wavlink-WN533A8-Password-Disclosure.htmlhttps://drive.google.com/file/d/18ECQEqZ296LDzZ0wErgqnNfen1jCn0mG/view?usp=sharing