CVE-2026-2566 | Wavlink WL-NU516U1 up to 130/260 /cgi-bin/adm.cgi sub_406194 firmware_url stack-based overflow

A vulnerability categorized as critical has been discovered in Wavlink WL-NU516U1 up to 130/260. This affects the function sub_406194 of the file /cgi-bin/adm.cgi. Such manipulation of the argument firmware_url leads to stack-based buffer overflow.

This vulnerability is uniquely identified as CVE-2026-2566. The attack can be launched remotely. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More