CVE-2024-39226
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD
Description
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3000/X3000 v4.4 were discovered to contain a vulnerability can be exploited to manipulate routers by passing malicious shell commands through the s2s API.
Affected (28)
Products: Gl Inet: Mt6000 Firmware, A1300 Firmware, X300b Firmware, Ax1800 Firmware, Axt1800 Firmware, Mt2500 Firmware, Mt3000 Firmware, X3000 Firmware, Xe3000 Firmware, Xe300 Firmware, E750 Firmware, X750 Firmware, Sft1200 Firmware, Ar300m Firmware, Ar300m16 Firmware, Ar750 Firmware, Ar750s Firmware, B1300 Firmware, Mt1300 Firmware, Mt300n V2 Firmware, Ap1300 Firmware, B2200 Firmware, Mv1000 Firmware, Mv1000w Firmware, Usb150 Firmware, Sf1200 Firmware, N300 Firmware, S1300 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.5.8 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Mt6000 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.5.16 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet A1300 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.5.16 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet X300b | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.5.16 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Ax1800 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.5.16 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Axt1800 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.5.16 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Mt2500 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.5.16 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Mt3000 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.4.8 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet X3000 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.4.8 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Xe3000 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.16 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Xe300 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.12 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet E750 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet X750 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Sft1200 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Ar300m | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Ar300m16 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Ar750 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Ar750s | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet B1300 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Mt1300 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.3.11 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Mt300n V2 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.217 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Ap1300 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.216 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet B2200 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.216 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Mv1000 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.216 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Mv1000w | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.216 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Usb150 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.216 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet Sf1200 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.216 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet N300 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.216 |
| Running on/with | Platform Versions |
|---|---|
Gl Inet S1300 | All versions |
Related CWEs
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.
References (1)
Source: cve@mitre.org
ExploitThird Party Advisory
Timeline
No history available yet.