PT-2026-23923 · Wavlink · Wavlink Wl-Wn579X3-C

Ltzhuster

Published

2026-03-08

Updated

2026-03-13

CVE-2026-3715

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Wavlink WL-WN579X3-C versions prior to 20260226

Description A stack-based buffer overflow exists in the function sub 40139C of the file /cgi-bin/firewall.cgi. Manipulation of the del flag argument can trigger this issue, allowing for remote exploitation. The exploit has been made public.

Recommendations Wavlink WL-WN579X3-C versions prior to 20260226 should be upgraded to version 20260226.

Exploit

Fix

Stack Overflow

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-119

Related Identifiers

CVE-2026-3715

Affected Products

Wavlink Wl-Wn579X3-C

PT-2026-23923 · Wavlink · Wavlink Wl-Wn579X3-C

CVE-2026-3715

Weakness Enumeration

Related Identifiers

Affected Products

References · 16