GL-iNet GL-AR300M16 安全漏洞

GL-iNet GL-AR300M16 is a portable mini router produced by the Chinese company GL-iNet. The version GL-iNet GL-AR300M16 v4.3.11 contains a security vulnerability. This vulnerability stems from the module parameter in the M.getsystemlog function, which allows for command injection, potentially...

The vulnerability of the `get_system_log` and `get_crash_log` functions in the logread module of the GL.iNet router microprogramming solutions (GL.iNet A1300, AX1800, AXT1800, MT3000, MT2500, MT6000, MT1300, MT300N-V2, AR750S, AR750, AR300M, B1300) allows a attacker to execute arbitrary code.

The vulnerability of the getsystemlog and getcrashlog functions in the logread module of the GL.iNet routers A1300, AX1800, AXT1800, MT3000, MT2500, MT6000, MT1300, MT300N-V2, AR750S, AR750, AR300M, B1300 exists due to the lack of measures to neutralize special elements used in the operating syst...