CVE-2022-35518 Information

Description

WAVLINK WN572HP3 WN533A8 WN530H4 WN535G3 WN531P3 nas.cgi has no filtering on parameters: User1Passwd and User1 which leads to command injection in page /nas_disk.shtml.

Reference

https://github.com/TyeYeah/othercveinfo/blob/main/wavlink/README.md#wavlink-router-ac1200-page-nas_diskshtml-command-injection-in-nascgi