Wavlink Nu516U1 vulnerabilities
17 known vulnerabilities affecting wavlink/nu516u1.
Total CVEs
17
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH16
Vulnerabilities
Page 1 of 1
CVE-2026-8190P2HIGHCVSS 8.8vM16U1_V2404252026-05-09
CVE-2026-8190 [HIGH] CWE-77 CVE-2026-8190: A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. Affected by this issue is the funct
A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument ppp_username/ppp_passwd/rwan_ip/rwan_mask/rwan_gateway is directly passed by the attacker/so we can control the ppp_username/ppp_passwd/rwan_ip/rwan_mask/rwan_gateway causes os command
nvd
CVE-2026-8192P2HIGHCVSS 8.8vM16U1_V2404252026-05-09
CVE-2026-8192 [HIGH] CWE-77 CVE-2026-8192: A security flaw has been discovered in Wavlink NU516U1 M16U1_V240425. This vulnerability affects the
A security flaw has been discovered in Wavlink NU516U1 M16U1_V240425. This vulnerability affects the function wzdap of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument EncrypType/wl_Pass is directly passed by the attacker/so we can control the EncrypType/wl_Pass results in os command injection. The attack may be initiated remotely. Th
nvd
CVE-2025-10959P2HIGHCVSS 8.8v2512082025-09-25
CVE-2025-10959 [HIGH] CWE-74 CVE-2025-10959: A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. The affected element is the functio
A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. The affected element is the function sub_401778 of the file /cgi-bin/firewall.cgi. Such manipulation of the argument dmz_flag leads to command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about
nvd
CVE-2026-8227P2HIGHCVSS 8.8v2404252026-05-10
CVE-2026-8227 [HIGH] CWE-77 CVE-2026-8227: A weakness has been identified in Wavlink NU516U1 240425. This issue affects the function wzdapMesh
A weakness has been identified in Wavlink NU516U1 240425. This issue affects the function wzdapMesh of the file /cgi-bin/adm.cgi. This manipulation causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure.
nvd
CVE-2025-10964P2HIGHCVSS 8.8vn/a2025-09-25
CVE-2025-10964 [HIGH] CWE-74 CVE-2025-10964: A weakness has been identified in Wavlink NU516U1. Affected by this vulnerability is the function su
A weakness has been identified in Wavlink NU516U1. Affected by this vulnerability is the function sub_401B30 of the file /cgi-bin/firewall.cgi. This manipulation of the argument remoteManagementEnabled causes command injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited. The vendor was
nvd
CVE-2025-10960P2HIGHCVSS 8.8vM16U1_V2404252025-09-25
CVE-2025-10960 [HIGH] CWE-74 CVE-2025-10960: A vulnerability was found in Wavlink NU516U1 M16U1_V240425. The impacted element is the function sub
A vulnerability was found in Wavlink NU516U1 M16U1_V240425. The impacted element is the function sub_402D1C of the file /cgi-bin/wireless.cgi of the component DeleteMac Page. Performing manipulation of the argument delete_list results in command injection. The attack is possible to be carried out remotely. The exploit has been made public and could be
nvd
CVE-2026-8188P2HIGHCVSS 8.8vM16U1_V2404252026-05-09
CVE-2026-8188 [HIGH] CWE-77 CVE-2026-8188: A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wif
A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/EncrypType leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor
nvd
CVE-2026-8191P2HIGHCVSS 8.8vM16U1_V2404252026-05-09
CVE-2026-8191 [HIGH] CWE-77 CVE-2026-8191: A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This affects the function wifi_regi
A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This affects the function wifi_region of the file /cgi-bin/adm.cgi. Such manipulation of the argument skiplist1/skiplist2 leads to os command injection. The attack can be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclo
nvd
CVE-2026-8228P2HIGHCVSS 8.8v2404252026-05-10
CVE-2026-8228 [HIGH] CWE-77 CVE-2026-8228: A security vulnerability has been detected in Wavlink NU516U1 240425. Impacted is the function advan
A security vulnerability has been detected in Wavlink NU516U1 240425. Impacted is the function advance of the file /cgi-bin/wireless.cgi. Such manipulation of the argument wlan_conf/Channel/skiplist/ieee_80211h leads to os command injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was conta
nvd
CVE-2025-10963P2HIGHCVSS 8.8vM16U1_V2404252025-09-25
CVE-2025-10963 [HIGH] CWE-74 CVE-2025-10963: A security flaw has been discovered in Wavlink NU516U1 M16U1_V240425. Affected is the function sub_4
A security flaw has been discovered in Wavlink NU516U1 M16U1_V240425. Affected is the function sub_4016F0 of the file /cgi-bin/firewall.cgi. The manipulation of the argument del_flag results in command injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be exploited. The vendor was contacted earl
nvd
CVE-2026-8189P2HIGHCVSS 8.8vM16U1_V2404252026-05-09
CVE-2026-8189 [HIGH] CWE-77 CVE-2026-8189: A vulnerability was found in Wavlink NU516U1 M16U1_V240425. Affected by this vulnerability is the fu
A vulnerability was found in Wavlink NU516U1 M16U1_V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlan_bssid/sel_Automode/sel_EncrypTyp results in os command injection. It is possible to launch the attack remotely. The exploit has been made public and could be used. The v
nvd
CVE-2025-10962P2HIGHCVSS 8.8vM16U1_V2404252025-09-25
CVE-2025-10962 [HIGH] CWE-74 CVE-2025-10962: A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This impacts the function sub_40319
A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This impacts the function sub_403198 of the file /cgi-bin/wireless.cgi of the component SetName Page. The manipulation of the argument mac_5g leads to command injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was con
nvd
CVE-2026-8229P2HIGHCVSS 8.8v2404252026-05-10
CVE-2026-8229 [HIGH] CWE-77 CVE-2026-8229: A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBas
A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument AuthMethod/EncrypType results in os command injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early
nvd
CVE-2025-10958P2HIGHCVSS 8.8vM16U1_V2404252025-09-25
CVE-2025-10958 [HIGH] CWE-74 CVE-2025-10958: A flaw has been found in Wavlink NU516U1 M16U1_V240425. Impacted is the function sub_403010 of the f
A flaw has been found in Wavlink NU516U1 M16U1_V240425. Impacted is the function sub_403010 of the file /cgi-bin/wireless.cgi of the component AddMac Page. This manipulation of the argument macAddr causes command injection. Remote exploitation of the attack is possible. The exploit has been published and may be used. The vendor was contacted early abou
nvd
CVE-2026-8230P2HIGHCVSS 8.8v2404252026-05-10
CVE-2026-8230 [HIGH] CWE-77 CVE-2026-8230: A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of
A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command injection. The attack can be executed remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure.
nvd
CVE-2026-3703P2CRITICALCVSS 9.8v2512082026-03-08
CVE-2026-3703 [CRITICAL] CWE-119 CVE-2026-3703: A flaw has been found in Wavlink NU516U1 251208. This affects the function sub_401A10 of the file /c
A flaw has been found in Wavlink NU516U1 251208. This affects the function sub_401A10 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to out-of-bounds write. The attack may be performed from remote. The exploit has been published and may be used. Upgrading the affected component is recommended. The vendor was
nvd
CVE-2025-10961P3HIGHCVSS 8.0vM16U1_V2404252025-09-25
CVE-2025-10961 [HIGH] CWE-74 CVE-2025-10961: A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. This affects the function sub_4030C
A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. This affects the function sub_4030C0 of the file /cgi-bin/wireless.cgi of the component Delete_Mac_list Page. Executing manipulation of the argument delete_list can lead to command injection. The vendor was contacted early about this disclosure but did not respond in any way.
nvd