CVE-2026-2526 | Wavlink WL-WN579A3 up to 20210219 /cgi-bin/wireless.cgi multi_ssid SSID2G2 command injection

A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. It has been classified as critical. This impacts the function multi_ssid of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument SSID2G2 results in command injection.

This vulnerability was named CVE-2026-2526. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More