An issue was discovered where a page is exposed that has the current administrator password in cleartext in the source code of the page. No authentication is required in order to reach the page (a certain live_?.shtml page with the variable syspasswd). Affected Devices: Wavlink WN530HG4, Wavlink WN531G3, and Wavlink WN572HG3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NWavlink Wn530hg4
HWWavlinkwszystkie wersjeWavlink Wn530hg4 Firmware
OSWavlinkm30hg4.v5030.191116Wavlink Wn531g3
HWWavlinkwszystkie wersjeWavlink Wn531g3 Firmware
OSWavlinkwszystkie wersjeWavlink Wn572hg3
HWWavlinkwszystkie wersjeWavlink Wn572hg3 Firmware
OSWavlinkwszystkie wersje
Related vulnerabilities
A vulnerability classified as critical has been found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028...
A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been rated as criti...
A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been classified as ...
The WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 does not utilize anti-CSRF token...
Because the WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 and earlier communicates...