Gl-ar300m Firmware@4.3.7 Security Vulnerabilities and Issues — Gl-ar300m Firmware@4.3.7 CVE List

Lucene search

Gl-inetGl-ar300m Firmware4.3.7

3 matches found

CVE•added 2023/12/28 5:15 a.m.•61 views

CVE-2023-50445

Shell Injection vulnerability GL.iNet A1300 v4.4.6, AX1800 v4.4.6, AXT1800 v4.4.6, MT3000 v4.4.6, MT2500 v4.4.6, MT6000 v4.5.0, MT1300 v4.3.7, MT300N-V2 v4.3.7, AR750S v4.3.7, AR750 v4.3.7, AR300M v4.3.7, and B1300 v4.3.7., allows local attackers to execute arbitrary code via the get_system_log and...

7.8CVSS9AI score0.0259EPSS

CVE•added 2023/12/12 3:15 p.m.•47 views

CVE-2023-46455

In GL.iNET GL-AR300M routers with firmware v4.3.7 it is possible to write arbitrary files through a path traversal attack in the OpenVPN client file upload functionality.

7.5CVSS7.5AI score0.50891EPSS

CVE•added 2023/12/12 3:15 p.m.•29 views

CVE-2023-46454

In GL.iNET GL-AR300M routers with firmware v4.3.7, it is possible to inject arbitrary shell commands through a crafted package name in the package information functionality.

9.8CVSS9.2AI score0.15671EPSS