What is CVE-2022-48165?

CVE-2022-48165 is a vulnerability in N/a. Published 2023-02-03.

Is CVE-2022-48165 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-48165

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN530H4 M30H4.V5030.210121 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials.

EPSS: 0.813 (99.2th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cvemon
ARPSyndicate/kenzer-templates

References

docs.google.com/document/d/1HD4GKumkZpa6FNHuf0QQSKFvoYhCfwXpbyWiJdx1VtE/edit
github.com/strik3r0x1/Vulns/blob/main/WAVLINK_WL-WN530H4.md

Frequently asked questions

What is CVE-2022-48165?: CVE-2022-48165 is a vulnerability in N/a. Published 2023-02-03.
Is CVE-2022-48165 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.