CVE-2026-8227 | Wavlink NU516U1 240425 /cgi-bin/adm.cgi wzdapMesh os command injection

Inserito da Angelo Barbosa | Mag 9, 2026 | CVE

A vulnerability marked as critical has been reported in Wavlink NU516U1 240425. This issue affects the function wzdapMesh of the file /cgi-bin/adm.cgi. This manipulation causes os command injection.

This vulnerability appears as CVE-2026-8227. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure.

CVE-2026-8227 | Wavlink NU516U1 240425 /cgi-bin/adm.cgi wzdapMesh os command injection

Post correlati

CVE-2021-47220 | Linux Kernel up to 4.9.273/4.14.237/5.12/5.13 usb dwc3_shutdown null pointer dereference

CVE-2024-42512 | OPC UA .NET Standard Stack prior 1.5.374.158 Basic128Rsa15 Security Policy improper authentication

CVE-2024-41836 | Adobe InDesign Desktop up to 18.5.2/19.3 null pointer dereference (apsb24-48)

CVE-2024-35675 | ILLID Advanced Woo Labels Plugin up to 1.93 on WordPress cross site scripting