Is Stack Overflow affected by CVE-2026-3613?

A HIGH severity vulnerability (CVE-2026-3613) in Wavlink WL-NU516U1 wireless access points allows unauthenticated attackers to exploit the login function, potentially compromising network access controls.

CVE-2026-3613

HIGH

2026-03-06 [email protected]

7.2

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:06 vuln.today

PoC Detected

Mar 10, 2026 - 18:30 vuln.today

Public exploit code

CVE Published

Mar 06, 2026 - 02:15 nvd

HIGH 7.2

Description

A vulnerability was identified in Wavlink WL-NU516U1 V240425. This vulnerability affects the function sub_401A0C of the file /cgi-bin/login.cgi. Such manipulation of the argument ipaddr leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure.

Analysis

Stack-based buffer overflow in Wavlink WL-NU516U1 firmware's login.cgi allows remote attackers with high privileges to achieve complete system compromise through a malformed ipaddr parameter. Public exploit code exists for this vulnerability, and no patch is currently available. …

Remediation

Within 24 hours: Inventory all Wavlink WL-NU516U1 V240425 devices in production; isolate or disable internet-facing instances; implement network access controls limiting login.cgi access to trusted administrative subnets only. Within 7 days: Deploy WAF rules blocking suspicious requests to /cgi-bin/login.cgi; consider firmware downgrade if earlier versions are unaffected; engage Wavlink support for patch ETA. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.1

CVSS: +36

POC: +20

CVE-2026-3613 vulnerability details – vuln.today

Back

CVE-2026-3613

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Share

CVE-2026-3613

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code