PT-2026-8382 · Wavlink · Wavlink Wl-Nu516U1

Haimianbaobao

Publicado

2026-02-04

Atualizado

2026-02-16

CVE-2026-2567

CVSS v2.0

9.0

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Wavlink WL-NU516U1 version 20251208

Description A stack-based buffer overflow exists in the sub 401218 function of the /cgi-bin/nas.cgi file. The issue is triggered by manipulating the User1Passwd argument. This allows for remote attacks. A public exploit is available.

Recommendations Restrict access to the /cgi-bin/nas.cgi file. Avoid manipulating the User1Passwd argument. As a temporary workaround, consider restricting admin access.

Exploit

Correção

Buffer Overflow

Stack Overflow

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-121CWE-787

Identificadores relacionados

BDU:2026-02351

CVE-2026-2567

Produtos afetados

Wavlink Wl-Nu516U1

PT-2026-8382 · Wavlink · Wavlink Wl-Nu516U1

CVE-2026-2567

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9