CVE-2022-2486
- Reference to the description:
- Description:
- A vulnerability, which was classified as critical, was found in WAVLINK WN535K2 and WN535K3. This affects an unknown part of the file /cgi-bin/mesh.cgi?page=upgrade. The manipulation of the argument key leads to os command injection. The exploit has been disclosed to the public and may be used.
- Last updated date:
- 07/26/2022
Reports
ACTIVELY EXPLOITED
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 01/12/2023
- Reference url to background
https://unit42.paloaltonetworks.com/network-security-trends-aug-oct-2022/#post-126517-_hcrsbpc3e3r0
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 07/26/2022
- Reference url to background
https://github.com/1angx/webray.com.cn/blob/main/Wavlink/Wavlink%20mesh.cgi.md