CVE-2025-10359
CVE-2025-10359 affects Wavlink WL-WN578W2 (firmware 221110). The vulnerability resides in the function sub_404DBC within /cgi-bin/wireless.cgi, where manipulating the macAddr argument leads to an OS command injection . This can be exploited remotely and, per sources, the exploit is publicly avail...