Security Advisory

CVE-2026-8191

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-05-09 18:15:10

Last updated 2026-05-12 02:25:52

Assigner VulDB

State PUBLISHED

Description

A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This affects the function wifi_region of the file /cgi-bin/adm.cgi. Such manipulation of the argument skiplist1/skiplist2 leads to os command injection. The attack can be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure.

← Browse all CVEs View on cve.org ↗