A vulnerability classified as critical has been found in Wavlink NU516U1 240425 . The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi . Performing a manipulation of the argument AuthMethod/EncrypType results in os command injection. This vulnerability is known as CVE-2026-8229 . Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor was contacted early about this disclosure.