ID
VAR-202207-1814
CVE
CVE-2022-34571
TITLE
WAVLINK of wifi-repeater Direct request submission vulnerability in firmware
Trust: 0.8
DESCRIPTION
An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the system key information and execute arbitrary commands via accessing the page syslog.shtml. WAVLINK of wifi-repeater Firmware has a direct request submission vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. WAVLINK WiFi-Repeater is a WiFi range extender produced by China Ruiyin Technology (WAVLINK) company. There is a security vulnerability in WAVLINK WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 version
Trust: 1.8
AFFECTED PRODUCTS
| vendor: | wavlink | model: | wifi-repeater | scope: | eq | version: | rpta2-77w.m4300.01.gd.2017sep19 | Trust: 1.0 |
| vendor: | wavlink | model: | wifi-repeater | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | wavlink | model: | wifi-repeater | scope: | eq | version: | wifi-repeater firmware rpta2-77w.m4300.01.gd.2017sep19 | Trust: 0.8 |
| vendor: | wavlink | model: | wifi-repeater | scope: | - | version: | - | Trust: 0.8 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-425 | Trust: 1.0 |
| problemtype: | Direct request submission (CWE-425) [NVD evaluation ] | Trust: 0.8 |
| problemtype: | CWE-863 | Trust: 0.1 |
THREAT TYPE
remote or local
Trust: 0.6
TYPE
other
Trust: 0.6
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-34571 | Trust: 3.4 |
| db: | JVNDB | id: | JVNDB-2022-013828 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202207-2399 | Trust: 0.7 |
| db: | VULHUB | id: | VHN-426921 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2022-34571 | Trust: 0.1 |
REFERENCES
| url: | https://github.com/pghuanghui/cve_request/blob/main/wifi-repeater/wifi-repeater_syslog.shtml.assets/wifi-repeater_syslog.shtml.md | Trust: 2.6 |
| url: | https://www.wavlink.com/en_us/category/repeater.html | Trust: 2.6 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-34571 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2022-34571/ | Trust: 0.6 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
SOURCES
| db: | VULHUB | id: | VHN-426921 |
| db: | VULMON | id: | CVE-2022-34571 |
| db: | JVNDB | id: | JVNDB-2022-013828 |
| db: | CNNVD | id: | CNNVD-202207-2399 |
| db: | NVD | id: | CVE-2022-34571 |
LAST UPDATE DATE
2024-08-14T14:17:50.179000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-426921 | date: | 2022-08-03T00:00:00 |
| db: | VULMON | id: | CVE-2022-34571 | date: | 2022-07-26T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-013828 | date: | 2023-09-12T08:19:00 |
| db: | CNNVD | id: | CNNVD-202207-2399 | date: | 2022-08-10T00:00:00 |
| db: | NVD | id: | CVE-2022-34571 | date: | 2023-08-08T14:22:24.967 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-426921 | date: | 2022-07-25T00:00:00 |
| db: | VULMON | id: | CVE-2022-34571 | date: | 2022-07-25T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-013828 | date: | 2023-09-12T00:00:00 |
| db: | CNNVD | id: | CNNVD-202207-2399 | date: | 2022-07-25T00:00:00 |
| db: | NVD | id: | CVE-2022-34571 | date: | 2022-07-25T22:15:08.457 |