What is CVE-2022-34047?

CVE-2022-34047 is a vulnerability in N/a. Published 2022-07-20.

Is CVE-2022-34047 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-34047

An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows attackers to obtain usernames and passwords via view-source:http://IP_ADDRESS/set_safety.shtml?r=52300 and searching for [var syspasswd].

EPSS: 0.592 (98.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

20142995/nuclei-templates
ARPSyndicate/cvemon
ARPSyndicate/kenzer-templates
Marcuccio/kevin

References

drive.google.com/file/d/1sTQdUc12aZvJRFeb5wp8AfPdUEkkU9Sy/view (x_refsource_MISC)
packetstormsecurity.com/files/167891/Wavlink-WN530HG4-Password-Disclosure.html (x_refsource_MISC)

Frequently asked questions

What is CVE-2022-34047?: CVE-2022-34047 is a vulnerability in N/a. Published 2022-07-20.
Is CVE-2022-34047 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.