| Summary | GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, XE3000/X3000 v4, and B2200/MV1000/MV1000W/USB150/N300/SF1200 v3.216 were discovered to contain a shell injection vulnerability via the interface check_config. |
|---|---|
| Publication Date | Aug. 7, 2024, 1:15 a.m. |
| Registration Date | Aug. 7, 2024, 5 a.m. |
| Last Update | Aug. 9, 2024, 12:35 a.m. |
| CVSS3.1 : CRITICAL | |
| スコア | 9.8 |
|---|---|
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| 攻撃元区分(AV) | ネットワーク |
| 攻撃条件の複雑さ(AC) | 低 |
| 攻撃に必要な特権レベル(PR) | 不要 |
| 利用者の関与(UI) | 不要 |
| 影響の想定範囲(S) | 変更なし |
| 機密性への影響(C) | 高 |
| 完全性への影響(I) | 高 |
| 可用性への影響(A) | 高 |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:mt6000_firmware:4.5.8:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:mt6000:-:*:*:*:*:*:*:* | ||||
| Configuration2 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:a1300_firmware:4.5.16:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:a1300:-:*:*:*:*:*:*:* | ||||
| Configuration3 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:x300b_firmware:4.5.16:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:x300b:-:*:*:*:*:*:*:* | ||||
| Configuration4 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:ax1800_firmware:4.5.16:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:ax1800:-:*:*:*:*:*:*:* | ||||
| Configuration5 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:axt1800_firmware:4.5.16:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:axt1800:-:*:*:*:*:*:*:* | ||||
| Configuration6 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:mt2500_firmware:4.5.16:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:mt2500:-:*:*:*:*:*:*:* | ||||
| Configuration7 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:mt3000_firmware:4.5.16:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:mt3000:-:*:*:*:*:*:*:* | ||||
| Configuration8 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:x3000_firmware:4.4.8:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:x3000:-:*:*:*:*:*:*:* | ||||
| Configuration9 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:xe3000_firmware:4.4.8:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:xe3000:-:*:*:*:*:*:*:* | ||||
| Configuration10 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:xe300_firmware:4.3.16:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:xe300:-:*:*:*:*:*:*:* | ||||
| Configuration11 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:e750_firmware:4.3.12:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:e750:-:*:*:*:*:*:*:* | ||||
| Configuration12 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:x750_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:x750:-:*:*:*:*:*:*:* | ||||
| Configuration13 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:sft1200_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:sft1200:-:*:*:*:*:*:*:* | ||||
| Configuration14 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:ar300m_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:ar300m:-:*:*:*:*:*:*:* | ||||
| Configuration15 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:ar300m16_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:ar300m16:-:*:*:*:*:*:*:* | ||||
| Configuration16 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:ar750_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:ar750:-:*:*:*:*:*:*:* | ||||
| Configuration17 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:ar750s_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:ar750s:-:*:*:*:*:*:*:* | ||||
| Configuration18 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:b1300_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:b1300:-:*:*:*:*:*:*:* | ||||
| Configuration19 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:mt1300_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:mt1300:-:*:*:*:*:*:*:* | ||||
| Configuration20 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:mt300n-v2_firmware:4.3.11:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:mt300n-v2:-:*:*:*:*:*:*:* | ||||
| Configuration21 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:ap1300_firmware:3.217:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:ap1300:-:*:*:*:*:*:*:* | ||||
| Configuration22 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:b2200_firmware:3.216:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:b2200:-:*:*:*:*:*:*:* | ||||
| Configuration23 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:mv1000_firmware:3.216:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:mv1000:-:*:*:*:*:*:*:* | ||||
| Configuration24 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:mv1000w_firmware:3.216:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:mv1000w:-:*:*:*:*:*:*:* | ||||
| Configuration25 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:usb150_firmware:3.216:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:usb150:-:*:*:*:*:*:*:* | ||||
| Configuration26 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:sf1200_firmware:3.216:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:sf1200:-:*:*:*:*:*:*:* | ||||
| Configuration27 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:n300_firmware:3.216:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:n300:-:*:*:*:*:*:*:* | ||||
| Configuration28 | or higher | or less | more than | less than | |
| cpe:2.3:o:gl-inet:s1300_firmware:3.216:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:gl-inet:s1300:-:*:*:*:*:*:*:* | ||||