cbcvebase.

Wavlink Wl-Wn579A3 vulnerabilities

7 known vulnerabilities affecting wavlink/wl-wn579a3.

Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2026-2530P2HIGHCVSS 8.8v202102192026-02-16
CVE-2026-2530 [HIGH] CWE-74 CVE-2026-2530: A weakness has been identified in Wavlink WL-WN579A3 up to 20210219. This affects the function AddMa A weakness has been identified in Wavlink WL-WN579A3 up to 20210219. This affects the function AddMac of the file /cgi-bin/wireless.cgi. This manipulation of the argument macAddr causes command injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks. The vendor was cont
nvd
CVE-2026-2526P2HIGHCVSS 8.8v202102192026-02-16
CVE-2026-2526 [HIGH] CWE-74 CVE-2026-2526: A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. This impacts the function multi_ssid A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. This impacts the function multi_ssid of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument SSID2G2 results in command injection. The attack may be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosu
nvd
CVE-2026-2527P2CRITICALCVSS 9.8v202102192026-02-16
CVE-2026-2527 [CRITICAL] CWE-74 CVE-2026-2527: A vulnerability was determined in Wavlink WL-WN579A3 up to 20210219. Affected is an unknown function A vulnerability was determined in Wavlink WL-WN579A3 up to 20210219. Affected is an unknown function of the file /cgi-bin/login.cgi. Executing a manipulation of the argument key can lead to command injection. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this dis
nvd
CVE-2026-4163P2CRITICALCVSS 9.8v2203232026-03-16
CVE-2026-4163 [CRITICAL] CWE-74 CVE-2026-4163: A vulnerability was detected in Wavlink WL-WN579A3 220323. This issue affects the function SetName/G A vulnerability was detected in Wavlink WL-WN579A3 220323. This issue affects the function SetName/GuestWifi of the file /cgi-bin/wireless.cgi of the component POST Request Handler. Performing a manipulation results in command injection. It is possible to initiate the attack remotely. The exploit is now public and may be used. Upgrading the affected
nvd
CVE-2026-2528P2CRITICALCVSS 9.8v202102192026-02-16
CVE-2026-2528 [CRITICAL] CWE-74 CVE-2026-2528: A vulnerability was identified in Wavlink WL-WN579A3 up to 20210219. Affected by this vulnerability A vulnerability was identified in Wavlink WL-WN579A3 up to 20210219. Affected by this vulnerability is the function Delete_Mac_list of the file /cgi-bin/wireless.cgi. The manipulation of the argument delete_list leads to command injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used. The vendor wa
nvd
CVE-2026-2529P2CRITICALCVSS 9.8v202102192026-02-16
CVE-2026-2529 [CRITICAL] CWE-74 CVE-2026-2529: A security flaw has been discovered in Wavlink WL-WN579A3 up to 20210219. Affected by this issue is A security flaw has been discovered in Wavlink WL-WN579A3 up to 20210219. Affected by this issue is the function DeleteMac of the file /cgi-bin/wireless.cgi. The manipulation of the argument delete_list results in command injection. The attack can be executed remotely. The vendor was contacted early about this disclosure but did not respond in any way
nvd
CVE-2026-6559P4MEDIUMCVSS 4.3v2203232026-04-19
CVE-2026-6559 [MEDIUM] CWE-79 CVE-2026-6559: A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub_401F80 of A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub_401F80 of the file /cgi-bin/login.cgi. This manipulation of the argument Hostname causes cross site scripting. Remote exploitation of the attack is possible. Upgrading the affected component is recommended. The vendor was contacted early, responded in a very prof
nvd
Wavlink Wl-Wn579A3 vulnerabilities | cvebase