Wavlink

Wl-nu516u1 Firmware

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-4861

Exploit
  • EPSS 0.05%
  • Veröffentlicht 26.03.2026 08:18:07
  • Zuletzt bearbeitet 30.03.2026 13:26:50

A weakness has been identified in Wavlink WL-NU516U1 260227. This vulnerability affects the function ftext of the file /cgi-bin/nas.cgi. This manipulation of the argument Content-Length causes stack-based buffer overflow. The attack can be initiated ...

3.5

CVE-2026-4166

Exploit
  • EPSS 0.04%
  • Veröffentlicht 15.03.2026 05:32:08
  • Zuletzt bearbeitet 16.03.2026 14:53:07

A vulnerability was found in Wavlink WL-NU516U1 240425. The impacted element is the function sub_404F68 of the file /cgi-bin/login.cgi. The manipulation of the argument homepage/hostname results in cross site scripting. The attack can be launched rem...

9.8

CVE-2026-3703

Exploit
  • EPSS 0.21%
  • Veröffentlicht 08.03.2026 04:32:09
  • Zuletzt bearbeitet 10.03.2026 18:55:10

A flaw has been found in Wavlink NU516U1 251208. This affects the function sub_401A10 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to out-of-bounds write. The attack may be performed from remote. The exploi...

7.2

CVE-2026-3704

Exploit
  • EPSS 0.24%
  • Veröffentlicht 08.03.2026 03:28:16
  • Zuletzt bearbeitet 10.03.2026 18:55:30

A vulnerability has been found in Wavlink NU516U1 251208. This vulnerability affects the function sub_405B2C of the file /cgi-bin/firewall.cgi of the component Incomplete Fix CVE-2025-10959. The manipulation leads to command injection. It is possible...

7.2

CVE-2026-3662

Exploit
  • EPSS 0.2%
  • Veröffentlicht 07.03.2026 13:32:09
  • Zuletzt bearbeitet 10.03.2026 20:37:19

A vulnerability has been found in Wavlink WL-NU516U1 240425. This vulnerability affects the function usb_p910 of the file /cgi-bin/adm.cgi. Such manipulation of the argument Pr_mode leads to command injection. It is possible to launch the attack remo...

7.2

CVE-2026-3661

Exploit
  • EPSS 0.2%
  • Veröffentlicht 07.03.2026 13:32:07
  • Zuletzt bearbeitet 10.03.2026 16:30:51

A flaw has been found in Wavlink WL-NU516U1 240425. This affects the function ota_new_upgrade of the file /cgi-bin/adm.cgi. This manipulation of the argument model causes command injection. It is possible to initiate the attack remotely. The exploit ...

7.2

CVE-2026-3613

Exploit
  • EPSS 0.1%
  • Veröffentlicht 06.03.2026 01:02:07
  • Zuletzt bearbeitet 10.03.2026 18:30:01

A vulnerability was identified in Wavlink WL-NU516U1 V240425. This vulnerability affects the function sub_401A0C of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to stack-based buffer overflow. It is possible to launch t...

7.2

CVE-2026-3612

Exploit
  • EPSS 0.39%
  • Veröffentlicht 06.03.2026 00:32:10
  • Zuletzt bearbeitet 10.03.2026 18:29:54

A vulnerability was determined in Wavlink WL-NU516U1 V240425. This affects the function sub_405AF4 of the file /cgi-bin/adm.cgi of the component OTA Online Upgrade. This manipulation of the argument firmware_url causes command injection. It is possib...

7.2

CVE-2026-2615

Exploit
  • EPSS 0.44%
  • Veröffentlicht 17.02.2026 13:02:06
  • Zuletzt bearbeitet 18.02.2026 19:36:44

A flaw has been found in Wavlink WL-NU516U1 up to 20251208. The affected element is the function singlePortForwardDelete of the file /cgi-bin/firewall.cgi. Executing a manipulation of the argument del_flag can lead to command injection. The attack ma...

7.2

CVE-2026-2567

Exploit
  • EPSS 0.14%
  • Veröffentlicht 16.02.2026 17:32:05
  • Zuletzt bearbeitet 18.02.2026 19:41:03

A vulnerability was detected in Wavlink WL-NU516U1 20251208. This vulnerability affects the function sub_401218 of the file /cgi-bin/nas.cgi. Performing a manipulation of the argument User1Passwd results in stack-based buffer overflow. The attack may...