CVE 8.6 HIGH

Wavlink WL-NU516U1 adm.cgi sub_406194 stack-based overflow_CVE-2026-2566

February 16, 2026 invoker category_cve

8.6 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A security vulnerability has been detected in Wavlink WL-NU516U1 up to 130/260. This affects the function sub_406194 of the file /cgi-bin/adm.cgi. Such manipulation of the argument firmware_url leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AI Analysis

Stack-based buffer overflow vulnerability in Wavlink WL-NU516U1 via the firmware_url argument in the adm.cgi file

Basic Information

ID CVE-2026-2566

Source VulDB

Published Feb 16, 2026 at 17:02

Affected Product

Vendor Wavlink

Product WL-NU516U1

Version 130/260

Affected Versions Wavlink WL-NU516U1 130
Wavlink WL-NU516U1 260

CWE Classification

CWE-121 CWE-119

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor Wavlink

Product WL-NU516U1

Version 130, 260

References

{
    "lastseen": "",
    "description": "A security vulnerability has been detected in Wavlink WL-NU516U1 up to 130/260. This affects the function sub_406194 of the file /cgi-bin/adm.cgi. Such manipulation of the argument firmware_url leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2026-02-16T17:02:06.381Z",
    "modified": "2026-02-16T17:02:06.381Z",
    "type": "cve",
    "title": "Wavlink WL-NU516U1 adm.cgi sub_406194 stack-based overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.346173\nhttps://vuldb.com/?ctiid.346173\nhttps://vuldb.com/?submit.751908\nhttps://github.com/Wlz1112/Wavlink-NU516U1-V251208-/blob/main/firmware_url.md",
    "id": "CVE-2026-2566",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "Wavlink WL-NU516U1 130\nWavlink WL-NU516U1 260",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "WL-NU516U1",
    "version": "130/260",
    "vendor": "Wavlink",
    "ai_description": "Stack-based buffer overflow vulnerability in Wavlink WL-NU516U1 via the firmware_url argument in the adm.cgi file",
    "ai_severity": "High",
    "ai_vendor": "Wavlink",
    "ai_product": "WL-NU516U1",
    "ai_version": "130, 260",
    "ai_score": 8.6
}

💭 Join the Security Discussion ❌ Cancel Reply