The WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 uses IP addresses to hold sessions and does not not use session tokens. Therefore, if an attacker changes their IP address to match the logged-in administrator's, or is behind the same NAT as the logged in administrator, session takeover is possible.
References
Link | Resource |
---|---|
https://youtu.be/cSileV8YbsQ?t=655 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: rapid7
Published: 2022-08-02T00:00:00
Updated: 2022-09-13T20:35:12
Reserved: 2022-09-12T00:00:00
Link: CVE-2022-40622
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-09-13T21:15:10.197
Modified: 2022-09-19T13:55:40.630
Link: CVE-2022-40622
JSON object: View
Redhat Information
No data.