CVE-2022-35536 Information

Description

WAVLINK WN572HP3 WN533A8 WN530H4 WN535G3 WN531P3 qos.cgi has no filtering on parameters: qos_bandwith and qos_dat which leads to command injection in page /qos.shtml.

Reference

https://github.com/TyeYeah/othercveinfo/tree/main/wavlink#wavlink-router-ac1200-page-qosshtml-command-injection-in-qoscgi