PT-2026-23923

Name of the Vulnerable Software and Affected Versions Wavlink WL-WN579X3-C versions prior to 20260226 Description A stack-based buffer overflow exists in the function sub 40139C of the file /cgi-bin/firewall.cgi. Manipulation of the del flag argument can trigger this issue, allowing for remote...

CVE-2025-10964 Wavlink NU516U1 firewall.cgi sub_401B30 command injection

A weakness has been identified in Wavlink NU516U1. Affected by this vulnerability is the function sub401B30 of the file /cgi-bin/firewall.cgi. This manipulation of the argument remoteManagementEnabled causes command injection. The attack can be initiated remotely. The exploit has been made...

PT-2025-39441

Name of the Vulnerable Software and Affected Versions Wavlink NU516U1 M16U1 V240425 Description A security flaw exists in the Wavlink NU516U1 M16U1 V240425. The issue is due to command injection in the /cgi-bin/firewall.cgi file, specifically within the sub 4016F0 function. Manipulation of the de...

Wavlink NU516U1 命令注入漏洞

Wavlink NU516U1 is a wireless print server from China RuiYin Wavlink Company. A command injection vulnerability exists in the Wavlink NU516U1, which originates from the incorrect operation of the function sub401B30 in the file /cgi-bin/firewall.cgi on the parameter remoteManagementEnabled, which...