CVE-2026-13539: Stack-based Buffer Overflow in Wavlink WL-NU516U1-A
A vulnerability was identified in Wavlink WL-NU516U1-A M16U1_V240425. The impacted element is the function sub_407504 of the file /cgi-bin/wireless.cgi of the component POST Parameter Handler. Such manipulation of the argument Guest_ssid leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used. It is suggested to upgrade the affected component. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.
AI Analysis
Technical Summary
This vulnerability affects the Wavlink WL-NU516U1-A device running firmware version M16U1_V240425. The issue lies in the function sub_407504 of the /cgi-bin/wireless.cgi component, which handles POST parameters. By sending a specially crafted argument for Guest_ssid, an attacker can cause a stack-based buffer overflow remotely. The vendor was notified early and promptly released a fixed version of the affected product. The vulnerability has a CVSS 4.0 base score of 8.7, indicating high severity. No cloud service is involved, and no known exploits in the wild have been reported at this time.
Potential Impact
Successful exploitation of this vulnerability could allow a remote attacker to cause a stack-based buffer overflow, potentially leading to arbitrary code execution or denial of service on the affected device. Given the high CVSS score and the nature of the vulnerability, the impact is significant for device integrity and availability.
Mitigation Recommendations
The vendor has released a fixed version of the affected product. It is strongly recommended to upgrade to the fixed firmware version as soon as possible to remediate this vulnerability. Patch status is not explicitly confirmed in the provided data, but the vendor's prompt release of a fixed version indicates an official fix is available.
CVE-2026-13539: Stack-based Buffer Overflow in Wavlink WL-NU516U1-A
Description
A vulnerability was identified in Wavlink WL-NU516U1-A M16U1_V240425. The impacted element is the function sub_407504 of the file /cgi-bin/wireless.cgi of the component POST Parameter Handler. Such manipulation of the argument Guest_ssid leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used. It is suggested to upgrade the affected component. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.
CVSS v4.0
Score 8.7high
Affected software
cpe:2.3:a:wavlink:wl-nu516u1-a:*:*:*:*:*:*:*:*AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability affects the Wavlink WL-NU516U1-A device running firmware version M16U1_V240425. The issue lies in the function sub_407504 of the /cgi-bin/wireless.cgi component, which handles POST parameters. By sending a specially crafted argument for Guest_ssid, an attacker can cause a stack-based buffer overflow remotely. The vendor was notified early and promptly released a fixed version of the affected product. The vulnerability has a CVSS 4.0 base score of 8.7, indicating high severity. No cloud service is involved, and no known exploits in the wild have been reported at this time.
Potential Impact
Successful exploitation of this vulnerability could allow a remote attacker to cause a stack-based buffer overflow, potentially leading to arbitrary code execution or denial of service on the affected device. Given the high CVSS score and the nature of the vulnerability, the impact is significant for device integrity and availability.
Mitigation Recommendations
The vendor has released a fixed version of the affected product. It is strongly recommended to upgrade to the fixed firmware version as soon as possible to remediate this vulnerability. Patch status is not explicitly confirmed in the provided data, but the vendor's prompt release of a fixed version indicates an official fix is available.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-06-28T10:01:38.197Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a42197427e9c79719692441
Added to database: 06/29/2026, 07:06:28 UTC
Last enriched: 06/29/2026, 07:21:16 UTC
Last updated: 06/29/2026, 22:33:21 UTC
Views: 29
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.