Vulnerability Details CVE-2025-55847
Wavlink M86X3A_V240730 contains a buffer overflow vulnerability in the /cgi-bin/ExportAllSettings.cgi file. The vulnerability arises because the Cookie parameter does not properly validate the length of input data. Attackers can exploit this to execute arbitrary code or cause a denial of service (DoS) on the system
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 2.8%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2025-55847
-
cpe:2.3:h:wavlink:wl-wn586x3a:-
-
cpe:2.3:o:wavlink:wl-wn586x3a_firmware:m86x3a_v240730