CVE-2022-35521

Name of the Vulnerable Software and Affected Versions WAVLINK WN572HP3 WAVLINK WN533A8 WAVLINK WN530H4 WAVLINK WN535G3 WAVLINK WN531P3

Description The issue is related to the firewall.cgi having no filtering on parameters: remoteManagementEnabled, blockPortScanEnabled, pingFrmWANFilterEnabled, and blockSynFloodEnabled. This lack of filtering leads to command injection in the page /man security.shtml.

Recommendations For WAVLINK WN572HP3, consider disabling the firewall.cgi until a patch is available. For WAVLINK WN533A8, restrict access to the /man security.shtml page to minimize the risk of exploitation. For WAVLINK WN530H4, avoid using the parameters remoteManagementEnabled, blockPortScanEnabled, pingFrmWANFilterEnabled, and blockSynFloodEnabled in the firewall.cgi until the issue is resolved. For WAVLINK WN535G3, restrict access to the firewall.cgi to minimize the risk of exploitation. For WAVLINK WN531P3, consider disabling the firewall.cgi until a patch is available.