CVE-2022-2487 - OpenCVE

A vulnerability has been found in WAVLINK WN535K2 and WN535K3 and classified as critical. This vulnerability affects unknown code of the file /cgi-bin/nightled.cgi. The manipulation of the argument start_hour leads to os command injection. The exploit has been disclosed to the public and may be used.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Wavlink	Wl-wn535k3 Firmware Wl-wn535k2 Wl-wn535k3 Wl-wn535k2 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:wavlink:wl-wn535k2_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:wavlink:wl-wn535k2:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:wavlink:wl-wn535k3_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:wavlink:wl-wn535k3:-:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/1angx/webray.com.cn/blob/main/Wavlink/Wavlink%20nightled.cgi%20.md	Exploit Third Party Advisory
https://vuldb.com/?id.204538	Exploit Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: VulDB

Published: 2022-07-20T11:35:27

Updated: 2022-07-20T11:35:27

Reserved: 2022-07-20T00:00:00

Link: CVE-2022-2487

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-07-20T12:15:08.367

Modified: 2022-07-26T15:33:15.717

Link: CVE-2022-2487

JSON object: View

Redhat Information

No data.

CWE

CWE-78

{"containers": {"cna": {"affected": [{"product": "WN535K2", "vendor": "WAVLINK", "versions": [{"status": "affected", "version": "n/a"}]}, {"product": "WN535K3", "vendor": "WAVLINK", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been found in WAVLINK WN535K2 and WN535K3 and classified as critical. This vulnerability affects unknown code of the file /cgi-bin/nightled.cgi. The manipulation of the argument start_hour leads to os command injection. The exploit has been disclosed to the public and may be used."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-78", "description": "CWE-78 OS Command Injection", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-07-20T11:35:27", "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/1angx/webray.com.cn/blob/main/Wavlink/Wavlink%20nightled.cgi%20.md"}, {"tags": ["x_refsource_MISC"], "url": "https://vuldb.com/?id.204538"}], "title": "WAVLINK WN535K2/WN535K3 nightled.cgi os command injection", "x_generator": "vuldb.com", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cna@vuldb.com", "ID": "CVE-2022-2487", "REQUESTER": "cna@vuldb.com", "STATE": "PUBLIC", "TITLE": "WAVLINK WN535K2/WN535K3 nightled.cgi os command injection"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "WN535K2", "version": {"version_data": [{"version_value": "n/a"}]}}, {"product_name": "WN535K3", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "WAVLINK"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability has been found in WAVLINK WN535K2 and WN535K3 and classified as critical. This vulnerability affects unknown code of the file /cgi-bin/nightled.cgi. The manipulation of the argument start_hour leads to os command injection. The exploit has been disclosed to the public and may be used."}]}, "generator": "vuldb.com", "impact": {"cvss": {"baseScore": "8.0", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-78 OS Command Injection"}]}]}, "references": {"reference_data": [{"name": "https://github.com/1angx/webray.com.cn/blob/main/Wavlink/Wavlink%20nightled.cgi%20.md", "refsource": "MISC", "url": "https://github.com/1angx/webray.com.cn/blob/main/Wavlink/Wavlink%20nightled.cgi%20.md"}, {"name": "https://vuldb.com/?id.204538", "refsource": "MISC", "url": "https://vuldb.com/?id.204538"}]}}}}, "cveMetadata": {"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "assignerShortName": "VulDB", "cveId": "CVE-2022-2487", "datePublished": "2022-07-20T11:35:27", "dateReserved": "2022-07-20T00:00:00", "dateUpdated": "2022-07-20T11:35:27", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:wavlink:wl-wn535k2_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "25760B7E-AF64-4FD3-95DE-82AF27FE6EED", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:wavlink:wl-wn535k2:-:*:*:*:*:*:*:*", "matchCriteriaId": "F523FA5D-C595-4705-94B9-E0ACFDDCA9AC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:wavlink:wl-wn535k3_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "0E1AC084-C71F-4901-A33F-7ADFB42F7FAA", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:wavlink:wl-wn535k3:-:*:*:*:*:*:*:*", "matchCriteriaId": "9F84434A-18D8-4E1D-8710-2B7C1DB9A927", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A vulnerability has been found in WAVLINK WN535K2 and WN535K3 and classified as critical. This vulnerability affects unknown code of the file /cgi-bin/nightled.cgi. The manipulation of the argument start_hour leads to os command injection. The exploit has been disclosed to the public and may be used."}, {"lang": "es", "value": "Se ha encontrado una vulnerabilidad en WAVLINK WN535K2 y WN535K3 y ha sido clasificada como cr\u00edtica. Esta vulnerabilidad afecta a c\u00f3digo desconocido del archivo /cgi-bin/nightled.cgi. La manipulaci\u00f3n del argumento start_hour conlleva a una inyecci\u00f3n de comandos de os. La explotaci\u00f3n ha sido divulgada al p\u00fablico y puede ser usada"}], "id": "CVE-2022-2487", "lastModified": "2022-07-26T15:33:15.717", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.1, "impactScore": 5.9, "source": "cna@vuldb.com", "type": "Secondary"}]}, "published": "2022-07-20T12:15:08.367", "references": [{"source": "cna@vuldb.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/1angx/webray.com.cn/blob/main/Wavlink/Wavlink%20nightled.cgi%20.md"}, {"source": "cna@vuldb.com", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "https://vuldb.com/?id.204538"}], "sourceIdentifier": "cna@vuldb.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-78"}], "source": "cna@vuldb.com", "type": "Secondary"}]}