CVE-2022-35521
Published: 10 August 2022
Summary
CVE-2022-35521 is a critical-severity an unspecified weakness vulnerability in Wavlink Wn572Hp3 Firmware. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 10.0% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
CVE-2022-35521 affects multiple WAVLINK router models including WN572HP3, WN533A8, WN530H4, WN535G3, and WN531P3. The flaw resides in firewall.cgi, which processes the parameters remoteManagementEnabled, blockPortScanEnabled, pingFrmWANFilterEnabled, and blockSynFloodEnabled on the /man_security.shtml page without any input filtering or sanitization, enabling unauthenticated command injection.
An attacker with network access to the device can supply crafted values for these parameters to execute arbitrary commands on the router. Because the CVSS vector indicates an attack can be launched remotely with no authentication or user interaction required, successful exploitation yields full control over device configuration and traffic handling.
The two provided references consist of the same technical write-up documenting the injection vectors but contain no vendor advisory, firmware update, or mitigation guidance. The EPSS score rose from a low baseline to a recorded peak of 0.0876, indicating that exploitation interest increased after public disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2022-38408
Vulnerability details
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameters: remoteManagementEnabled, blockPortScanEnabled, pingFrmWANFilterEnabled and blockSynFloodEnabled, which leads to command injection in page /man_security.shtml.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.