Exploitation Summary
CVE-2022-44356 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.
Description
WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated attackers to download configuration data and log files.
Nuclei Templates (1)
WAVLINK Quantum D4G (WL-WN531G3) - Information Disclosure
HIGHVERIFIEDby ritikchaddha
Shodan:
html:"WN531G3"
FOFA:
body="WN531G3"
References (1)
Core 1
Core References
Exploit, Third Party Advisory
https://github.com/strik3r0x1/Vulns/blob/main/Wavlink%20WL-WN531G3.md
Scores
CVSS v3
7.5
EPSS
0.0276
EPSS Percentile
84.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-552
Status
published
Products (2)
wavlink/wl-wn531g3_firmware
m31g3.v5030.200325
wavlink/wl-wn531g3_firmware
m31g3.v5030.201204
Published
Nov 29, 2022
Tracked Since
Feb 18, 2026