CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-10961

A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. This affects the function sub_4030C0 of the file /cgi-bin/wireless.cgi of the component Delete_Mac_list Page. Executing manipulation of the argument delete_list can lead to command injection. The vendor was contacted early about this disclosure but did not respond in any way.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.02

EPSS Ranking 83.1%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 5.2

References

https://github.com/panda666-888/vuls/blob/main/wavlink/nu516u1/Delete_Mac_list.md
https://vuldb.com/?ctiid.325829
https://vuldb.com/?id.325829
https://vuldb.com/?submit.652781

Products affected by CVE-2025-10961

Wavlink » Wl-Nu516u1 » Version: N/A

cpe:2.3:h:wavlink:wl-nu516u1:-
Wavlink » Wl-Nu516u1 Firmware » Version: m16u1_v240425

cpe:2.3:o:wavlink:wl-nu516u1_firmware:m16u1_v240425

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-10961

Products

Pricing

Contact Us