CVE-2025-10962 | Wavlink NU516U1 M16U1_V240425 SetName Page /cgi-bin/wireless.cgi sub_403198 mac_5g command injection

A vulnerability was found in Wavlink NU516U1 M16U1_V240425. It has been rated as critical. This impacts the function sub_403198 of the file /cgi-bin/wireless.cgi of the component SetName Page. The manipulation of the argument mac_5g leads to command injection.

This vulnerability is traded as CVE-2025-10962. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More