CVE-2025-10323 | Wavlink WL-WN578W2 221110 /wizard_rep.shtml sub_409184 sel_EncrypTyp command injection

A vulnerability described as critical has been identified in Wavlink WL-WN578W2 221110. The impacted element is the function sub_409184 of the file /wizard_rep.shtml. The manipulation of the argument sel_EncrypTyp results in command injection.

This vulnerability was named CVE-2025-10323. The attack may be performed from remote. In addition, an exploit is available.

Applying restrictive firewalling is recommended.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More