Cyber Resilience

CVE-2022-48164

HighPublic PoC

Published: 06 February 2023

Published
06 February 2023
Modified
26 March 2025
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score 0.8713 99.5th percentile
Risk Priority 67 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-48164 is a high-severity an unspecified weakness vulnerability in Wavlink Wl-Wn533A8 Firmware. Its CVSS base score is 7.5 (High).

Operationally, ranked in the top 0.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

CVE-2022-48164 is an access control vulnerability in the /cgi-bin/ExportLogs.sh component of the Wavlink WL-WN533A8 router running firmware version M33A8.V5030.190716. The flaw permits unauthenticated network access to sensitive files, exposing configuration data, log files, and administrative credentials. It carries a CVSS 3.1 base score of 7.5 reflecting network attack vector, low complexity, and high confidentiality impact without any required privileges or user interaction.

An unauthenticated remote attacker can directly request the affected CGI endpoint to retrieve the exported files and extract hardcoded or stored administrator credentials, enabling subsequent authenticated access to the device management interface and further compromise of the router.

The EPSS score stands at 0.8713, matching its recorded peak and indicating substantial exploitation likelihood following public disclosure through repositories such as GitHub. No vendor advisories or patches are referenced in the available sources.

EU & UK References

Vulnerability details

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN533A8 M33A8.V5030.190716 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

wavlink
wl-wn533a8 firmware
m33a8.v5030.190716

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References