cvedb.io
CVE-2026-2529
MEDIUM · CVSS 6.3
EPSS exploitation probability: 0%
Published 2026-02-16T02:16:07.000 · Last modified 2026-06-17T10:31:15.047

Summary

A security flaw has been discovered in Wavlink WL-WN579A3 up to 20210219. Affected by this issue is the function DeleteMac of the file /cgi-bin/wireless.cgi. The manipulation of the argument delete_list results in command injection. The attack can be executed remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Affected products

wavlink — wl-wn579a3_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when wavlink ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.