Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Gl\-Ax1800_firmware
(Gl\-Inet)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 16 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-05-11 | CVE-2023-31473 | An issue was discovered on GL.iNet devices before 3.216. There is an arbitrary file write in which an empty file can be created anywhere on the filesystem. This is caused by a command injection vulnerability with a filter applied. Through the software installation feature, it is possible to inject arbitrary parameters in a request to cause opkg to read an arbitrary file name while using root privileges. The -f option can be used with a configuration file. | Gl\-A1300_firmware, Gl\-Ap1300_firmware, Gl\-Ap1300lte_firmware, Gl\-Ar300m_firmware, Gl\-Ar750_firmware, Gl\-Ar750s_firmware, Gl\-Ax1800_firmware, Gl\-Axt1800_firmware, Gl\-B1300_firmware, Gl\-B2200_firmware, Gl\-E750_firmware, Gl\-Mifi_firmware, Gl\-Mt1300_firmware, Gl\-Mt2500_firmware, Gl\-Mt2500a_firmware, Gl\-Mt3000_firmware, Gl\-Mt300n\-V2_firmware, Gl\-Mv1000_firmware, Gl\-Mv1000w_firmware, Gl\-S10_firmware, Gl\-S1300_firmware, Gl\-S200_firmware, Gl\-S20_firmware, Gl\-Sf1200_firmware, Gl\-Sft1200_firmware, Gl\-Usb150_firmware, Gl\-X1200_firmware, Gl\-X3000_firmware, Gl\-X300b_firmware, Gl\-X750_firmware, Gl\-Xe300_firmware, Microuter\-N300_firmware | 4.9 | ||
| 2023-05-11 | CVE-2023-31475 | An issue was discovered on GL.iNet devices before 3.216. The function guci2_get() found in libglutil.so has a buffer overflow when an item is requested from a UCI context, and the value is pasted into a char pointer to a buffer without checking the size of the buffer. | Gl\-A1300_firmware, Gl\-Ap1300_firmware, Gl\-Ap1300lte_firmware, Gl\-Ar300m_firmware, Gl\-Ar750_firmware, Gl\-Ar750s_firmware, Gl\-Ax1800_firmware, Gl\-Axt1800_firmware, Gl\-B1300_firmware, Gl\-B2200_firmware, Gl\-E750_firmware, Gl\-Mifi_firmware, Gl\-Mt1300_firmware, Gl\-Mt2500_firmware, Gl\-Mt2500a_firmware, Gl\-Mt3000_firmware, Gl\-Mt300n\-V2_firmware, Gl\-Mv1000_firmware, Gl\-Mv1000w_firmware, Gl\-S10_firmware, Gl\-S1300_firmware, Gl\-S200_firmware, Gl\-S20_firmware, Gl\-Sf1200_firmware, Gl\-Sft1200_firmware, Gl\-Usb150_firmware, Gl\-X1200_firmware, Gl\-X3000_firmware, Gl\-X300b_firmware, Gl\-X750_firmware, Gl\-Xe300_firmware, Microuter\-N300_firmware | 9.8 | ||
| 2023-11-29 | CVE-2023-47462 | Insecure Permissions vulnerability in GL.iNet AX1800 v.3.215 and before allows a remote attacker to execute arbitrary code via the file sharing function. | Gl\-Ax1800_firmware | 9.8 | ||
| 2023-11-30 | CVE-2023-47463 | Insecure Permissions vulnerability in GL.iNet AX1800 version 4.0.0 before 4.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the gl_nas_sys authentication function. | Gl\-Ax1800_firmware | 9.8 | ||
| 2023-11-30 | CVE-2023-47464 | Insecure Permissions vulnerability in GL.iNet AX1800 version 4.0.0 before 4.5.0 allows a remote attacker to execute arbitrary code via the upload API function. | Gl\-Ax1800_firmware | 8.8 | ||
| 2023-12-28 | CVE-2023-50445 | Shell Injection vulnerability GL.iNet A1300 v4.4.6, AX1800 v4.4.6, AXT1800 v4.4.6, MT3000 v4.4.6, MT2500 v4.4.6, MT6000 v4.5.0, MT1300 v4.3.7, MT300N-V2 v4.3.7, AR750S v4.3.7, AR750 v4.3.7, AR300M v4.3.7, and B1300 v4.3.7., allows local attackers to execute arbitrary code via the get_system_log and get_crash_log functions of the logread module, as well as the upgrade_online function of the upgrade module. | Gl\-A1300_firmware, Gl\-Ar300m_firmware, Gl\-Ar750_firmware, Gl\-Ar750s_firmware, Gl\-Ax1800_firmware, Gl\-Axt1800_firmware, Gl\-B1300_firmware, Gl\-Mt1300_firmware, Gl\-Mt2500_firmware, Gl\-Mt3000_firmware, Gl\-Mt300n\-V2_firmware, Gl\-Mt6000_firmware | 7.8 |