CNNVD-202509-1802 Information

CNNVD ID

CNNVD-202509-1802

Related CVE

CVE-2025-10322

• CNNVD Published: 2025-09-12

Description (Chinese)

Wavlink WL-WN578W2是中国睿因（Wavlink）公司的一款无线中继器。 Wavlink WL-WN578W2 221110版本存在授权问题漏洞，该漏洞源于文件/sysinit.html中参数newpass/confpass处理不当，可能导致弱密码恢复。

Description (English)

Wavlink WL-WN578W2 is a wireless repeater of Wavlink. The Wavlink WL-WN578W2 2211110 version has a mandate gap, which stems from the inappropriate handling of the parameter Newpass/confpass in document/sysinit.html, which may lead to the restoration of weak passwords.

Hazard Level

High

Vulnerability Type

授权问题

Affected Vendor

睿因

Published

2025-09-12

Last Modified

2026-02-24

References

https://github.com/ZZ2266/.github.io/tree/main/WAVLINK/WL-WN578W2/sysinit.html https://vuldb.com/?ctiid.323748 https://vuldb.com/?id.323748 https://vuldb.com/?submit.643433 https://access.redhat.com/security/cve/cve-2025-10322