CVE-2026-7692
Awaiting Analysis Awaiting Analysis - Queue
Command Injection in Wavlink WL-WN570HA1 Firmware

Publication date: 2026-05-03

Last updated on: 2026-05-05

Assigner: VulDB

Description
A vulnerability was detected in Wavlink WL-WN570HA1 R70HA1 V1410_221110. The affected element is the function ping_ddns of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument DDNS results in command injection. The attack can be initiated remotely. The exploit is now public and may be used. Once again the vendors acted very professional and confirms, "that the WN570HA1 firmware version R70HA1 V1410_221110 has been removed from our website." This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-03
Last Modified
2026-05-05
Generated
2026-05-07
AI Q&A
2026-05-03
EPSS Evaluated
2026-05-05
NVD
CVE-2026-7692
EUVD
EUVD-2026-26831
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
wavlink wl-wn570ha1 r70ha1_v1410_221110
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-77 The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.
CWE-74 The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability exists in the Wavlink WL-WN570HA1 device, specifically in the ping_ddns function of the /cgi-bin/adm.cgi file. It allows an attacker to perform command injection by manipulating the DDNS argument. The attack can be carried out remotely, meaning an attacker does not need physical access to the device to exploit it.

The vulnerability affects firmware version R70HA1 V1410_221110, which has been removed from the vendor's website and is no longer supported.


How can this vulnerability impact me? :

Exploitation of this vulnerability can allow an attacker to execute arbitrary commands on the affected device remotely. This can lead to unauthorized control over the device, potentially compromising the network it is connected to.

Since the device is no longer supported, no official patches are available, increasing the risk if the vulnerable firmware is still in use.


What immediate steps should I take to mitigate this vulnerability?

The affected firmware version R70HA1 V1410_221110 has been removed from the vendor's website, indicating it is no longer supported.

Immediate mitigation steps include discontinuing use of the vulnerable Wavlink WL-WN570HA1 device with the affected firmware and replacing it with a supported device or firmware version.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart