top of page
perceptive_background_267k.jpg

A vulnerability was found in Wavlink WL-WN530H4 20220721. This vulnerability affects the function strcat/snprintf of the file /cgi-bin/internet.cgi. The manipul…

Published:

16 April 2026 at 22:00:00

Alert date:

17 April 2026 at 12:00:44

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure, Mobile & IoT

A critical vulnerability (CVE-2026-6483) was discovered in Wavlink WL-WN530H4 router version 20220721. The vulnerability affects the strcat/snprintf functions in /cgi-bin/internet.cgi file, leading to OS command injection. The flaw can be exploited remotely and a public exploit is available. The vulnerability allows attackers to execute arbitrary commands on the affected device. Users are strongly recommended to upgrade to version 2026.04.16 which resolves this security issue.

Technical details

Mitigation steps:

Affected products:

Wavlink WL-WN530H4

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-6483
https://dl.wavlink.com/firmware/RD/root_uImage_WN530H4-A_2026.04.16.bin
https://github.com/dxz0069/WAVLINK-WN530H4-Command-Injection-in-set_add_routing/blob/main/vuldb_submission_report.md
https://vuldb.com/submit/783055
https://vuldb.com/vuln/358021
https://vuldb.com/vuln/358021/cti

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page