VYPR

Wl Nu516u1 Firmware

by Wavlink

CVEs (26)

  • CVE-2025-10775MedSep 22, 2025
    risk 0.31cvss 4.7epss 0.20

    A security vulnerability has been detected in Wavlink WL-NU516U1 240425. This vulnerability affects the function sub_4012A0 of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to os command injection. It is possible to launch the attack remotely. The…

  • CVE-2026-3613Mar 6, 2026
    risk 0.00cvss epss 0.01

    A vulnerability was identified in Wavlink WL-NU516U1 V240425. This vulnerability affects the function sub_401A0C of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to stack-based buffer overflow. It is possible to launch the attack remotely. The…

  • CVE-2026-3612Mar 6, 2026
    risk 0.00cvss epss 0.09

    A vulnerability was determined in Wavlink WL-NU516U1 V240425. This affects the function sub_405AF4 of the file /cgi-bin/adm.cgi of the component OTA Online Upgrade. This manipulation of the argument firmware_url causes command injection. It is possible to initiate the attack…

  • CVE-2026-2615Feb 17, 2026
    risk 0.00cvss epss 0.10

    A flaw has been found in Wavlink WL-NU516U1 up to 20251208. The affected element is the function singlePortForwardDelete of the file /cgi-bin/firewall.cgi. Executing a manipulation of the argument del_flag can lead to command injection. The attack may be launched remotely. The…

  • CVE-2026-2567Feb 16, 2026
    risk 0.00cvss epss 0.01

    A vulnerability was detected in Wavlink WL-NU516U1 20251208. This vulnerability affects the function sub_401218 of the file /cgi-bin/nas.cgi. Performing a manipulation of the argument User1Passwd results in stack-based buffer overflow. The attack may be initiated remotely. The…

  • CVE-2026-2565Feb 16, 2026
    risk 0.00cvss epss 0.01

    A weakness has been identified in Wavlink WL-NU516U1 20251208. Affected by this issue is the function sub_40785C of the file /cgi-bin/adm.cgi. This manipulation of the argument time_zone causes stack-based buffer overflow. The attack can be initiated remotely. The attack is…

Page 2 of 2