CVE-2022-35519 Information

Description

WAVLINK WN572HP3 WN533A8 WN530H4 WN535G3 WN531P3 firewall.cgi has no filtering on parameter add_mac which leads to command injection in page /cli_black_list.shtml.

Reference

https://github.com/TyeYeah/othercveinfo/blob/main/wavlink/README.md#command-injection-occurs-when-deleting-blacklist-in-wavlink-router-ac1200-page-cli_black_listshtml-in-firewallcgi