2 matches found
CVE-2025-10322
A vulnerability has been found in Wavlink WL-WN578W2 221110. The affected element is an unknown function of the file /sysinit.html. The manipulation of the argument newpass/confpass leads to weak password recovery. The attack is possible to be carried out remotely. The exploit has been disclosed ...
CVE-2025-10322
The CVE-2025-10322 entry concerns Wavlink WL-WN578W2 (firmware 221110). A flaw in /sysinit.html allows manipulation of the newpass/confpass parameter due to improper privilege handling, enabling weak password recovery. Exploitation is described as remote and publicly disclosed, with PoC activity ...