Lucene search
K

489 matches found

nvd
nvd
added 2026/03/07 2:16 p.m.6 views

CVE-2026-3661

A flaw has been found in Wavlink WL-NU516U1 240425. This affects the function otanewupgrade of the file /cgi-bin/adm.cgi. This manipulation of the argument model causes command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor wa...

7.2CVSS0.12929EPSS
Exploits1References4
cvelist
cvelist
added 2026/03/07 1:32 p.m.37 views

CVE-2026-3661 Wavlink WL-NU516U1 adm.cgi ota_new_upgrade command injection

A flaw has been found in Wavlink WL-NU516U1 240425. This affects the function otanewupgrade of the file /cgi-bin/adm.cgi. This manipulation of the argument model causes command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor wa...

5.8CVSS0.12929EPSS
Exploits1References4
cnnvd
cnnvd
added 2026/03/07 12:0 a.m.7 views

WAVLINK WL-NU516U1 命令注入漏洞

WAVLINK WL-NU516U1 is a wireless print server developed by WAVLINK Corporation. The version 240425 of WAVLINK WL-NU516U1 has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter Prmode in the file/cgi-bin/adm.cgi, which may lead to command injection...

7.2CVSS5.8AI score0.13287EPSS
Exploits1References5
ptsecurity
ptsecurity
added 2026/03/07 12:0 a.m.10 views

PT-2026-23855

A flaw has been found in Wavlink WL-NU516U1 240425. This affects the function ota new upgrade of the file /cgi-bin/adm.cgi. This manipulation of the argument model causes command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor...

5.8CVSS5.6AI score0.12929EPSS
Exploits1References5
cnnvd
cnnvd
added 2026/03/07 12:0 a.m.11 views

WAVLINK WL-NU516U1 命令注入漏洞

WAVLINK WL-NU516U1 is a wireless print server developed by WAVLINK Corporation. The version 240425 of WAVLINK WL-NU516U1 has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter “model” in the file /cgi-bin/adm.cgi, which may lead to command injecti...

7.2CVSS5.8AI score0.12929EPSS
Exploits1References5
euvd
euvd
added 2026/03/06 3:31 a.m.9 views

EUVD-2026-9965

A vulnerability was identified in Wavlink WL-NU516U1 V240425. This vulnerability affects the function sub401A0C of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly...

8.6CVSS6.4AI score0.00709EPSS
Exploits1References5
osv
osv
added 2026/03/06 2:15 a.m.4 views

CVE-2026-3613

A vulnerability was identified in Wavlink WL-NU516U1 V240425. This vulnerability affects the function sub401A0C of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly...

7.2CVSS6.5AI score0.00709EPSS
Exploits1References4
cve
cve
added 2026/03/06 1:2 a.m.27 views

CVE-2026-3613

The CVE describes a stack-based buffer overflow in Wavlink WL-NU516U1 (firmware v240425) via the function sub_401A0C in /cgi-bin/login.cgi, caused by manipulation of the ipaddr argument. This allows a remote attacker to exploit a vulnerability with a publicly available exploit, potentially impact...

8.6CVSS6.4AI score0.00709EPSS
Exploits1References4Affected Software1
attackerkb
attackerkb
added 2026/03/06 12:32 a.m.6 views

CVE-2026-3612

A vulnerability was determined in Wavlink WL-NU516U1 V240425. This affects the function sub405AF4 of the file /cgi-bin/adm.cgi of the component OTA Online Upgrade. This manipulation of the argument firmwareurl causes command injection. It is possible to initiate the attack remotely. The exploit h...

8.6CVSS5.7AI score0.1127EPSS
Exploits1References4Affected Software1
cve
cve
added 2026/03/06 12:32 a.m.27 views

CVE-2026-3612

The vulnerability CVE-2026-3612 affects Wavlink WL-NU516U1 (firmware v240425) in the OTA Online Upgrade feature. It targets the function sub_405AF4 in /cgi-bin/adm.cgi by manipulating the firmware_url argument, resulting in a command injection. This can be triggered remotely, and the exploit has ...

8.6CVSS5.7AI score0.1127EPSS
Exploits1References4Affected Software1
ptsecurity
ptsecurity
added 2026/03/06 12:0 a.m.10 views

PT-2026-23624

Name of the Vulnerable Software and Affected Versions Wavlink WL-NU516U1 version V240425 Description A command injection issue exists in the OTA Online Upgrade component of the Wavlink WL-NU516U1 V240425. The issue is located in the sub 405AF4 function of the /cgi-bin/adm.cgi file. Manipulation o...

8.6CVSS7AI score0.1127EPSS
Exploits1References10
cnnvd
cnnvd
added 2026/03/06 12:0 a.m.11 views

WAVLINK WL-NU516U1 命令注入漏洞

WAVLINK WL-NU516U1 is a wireless print server developed by WAVLINK Corporation. The WAVLINK WL-NU516U1 V240425 version has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter firmwareurl in the file/cgi-bin/adm.cgi, which may lead to command...

8.6CVSS7.1AI score0.1127EPSS
Exploits1References4
nvd
nvd
added 2026/02/17 1:16 p.m.5 views

CVE-2026-2615

A flaw has been found in Wavlink WL-NU516U1 up to 20251208. The affected element is the function singlePortForwardDelete of the file /cgi-bin/firewall.cgi. Executing a manipulation of the argument delflag can lead to command injection. The attack may be launched remotely. The exploit has been...

8.6CVSS0.11596EPSS
Exploits1References5
osv
osv
added 2026/02/17 1:16 p.m.9 views

CVE-2026-2615

A flaw has been found in Wavlink WL-NU516U1 up to 20251208. The affected element is the function singlePortForwardDelete of the file /cgi-bin/firewall.cgi. Executing a manipulation of the argument delflag can lead to command injection. The attack may be launched remotely. The exploit has been...

8.6CVSS5.5AI score0.11596EPSS
Exploits1References5
cvelist
cvelist
added 2026/02/17 1:2 p.m.96 views

CVE-2026-2615 Wavlink WL-NU516U1 firewall.cgi singlePortForwardDelete command injection

A flaw has been found in Wavlink WL-NU516U1 up to 20251208. The affected element is the function singlePortForwardDelete of the file /cgi-bin/firewall.cgi. Executing a manipulation of the argument delflag can lead to command injection. The attack may be launched remotely. The exploit has been...

8.6CVSS0.11596EPSS
Exploits1References5
redhatcve
redhatcve
added 2026/02/17 7:28 a.m.7 views

CVE-2026-2529

A security flaw has been discovered in Wavlink WL-WN579A3 up to 20210219. Affected by this issue is the function DeleteMac of the file /cgi-bin/wireless.cgi. The manipulation of the argument deletelist results in command injection. The attack can be executed remotely. The vendor was contacted ear...

9.8CVSS5.4AI score0.0674EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/02/17 2:44 a.m.7 views

CVE-2026-2527

A vulnerability was determined in Wavlink WL-WN579A3 up to 20210219. Affected is an unknown function of the file /cgi-bin/login.cgi. Executing a manipulation of the argument key can lead to command injection. The attack may be launched remotely. The exploit has been publicly disclosed and may be...

9.8CVSS5.4AI score0.0674EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2026/02/17 12:0 a.m.8 views

PT-2026-20333

Name of the Vulnerable Software and Affected Versions Wavlink WL-NU516U1 versions up to 20251208 Description A flaw exists in Wavlink WL-NU516U1 that could allow for remote command injection. The issue is located in the singlePortForwardDelete function within the /cgi-bin/firewall.cgi file...

8.6CVSS5.3AI score0.11596EPSS
Exploits1References11
nvd
nvd
added 2026/02/16 6:19 p.m.9 views

CVE-2026-2566

A security vulnerability has been detected in Wavlink WL-NU516U1 up to 130/260. This affects the function sub406194 of the file /cgi-bin/adm.cgi. Such manipulation of the argument firmwareurl leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed...

8.6CVSS0.0047EPSS
Exploits0References4
cvelist
cvelist
added 2026/02/16 5:32 p.m.31 views

CVE-2026-2567 Wavlink WL-NU516U1 nas.cgi sub_401218 stack-based overflow

A vulnerability was detected in Wavlink WL-NU516U1 20251208. This vulnerability affects the function sub401218 of the file /cgi-bin/nas.cgi. Performing a manipulation of the argument User1Passwd results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now publi...

8.6CVSS0.00662EPSS
Exploits1References4
Rows per page
Query Builder