CVE-2023-31473
Severity Score
4.9
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
An issue was discovered on GL.iNet devices before 3.216. There is an arbitrary file write in which an empty file can be created anywhere on the filesystem. This is caused by a command injection vulnerability with a filter applied. Through the software installation feature, it is possible to inject arbitrary parameters in a request to cause opkg to read an arbitrary file name while using root privileges. The -f option can be used with a configuration file.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-04-28 CVE Reserved
- 2023-05-11 CVE Published
- 2024-08-02 CVE Updated
- 2024-08-02 First Exploit
- 2024-10-21 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/gl-inet/CVE-issues/blob/main/3.215/Arbitrary_File_Read.md | 2024-08-02 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.gl-inet.com | 2023-05-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Gl-inet Search vendor "Gl-inet" | Gl-s20 Firmware Search vendor "Gl-inet" for product "Gl-s20 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-s20 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-s20 Search vendor "Gl-inet" for product "Gl-s20" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-x3000 Firmware Search vendor "Gl-inet" for product "Gl-x3000 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-x3000 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-x3000 Search vendor "Gl-inet" for product "Gl-x3000" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-mt3000 Firmware Search vendor "Gl-inet" for product "Gl-mt3000 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-mt3000 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-mt3000 Search vendor "Gl-inet" for product "Gl-mt3000" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-mt2500 Firmware Search vendor "Gl-inet" for product "Gl-mt2500 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-mt2500 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-mt2500 Search vendor "Gl-inet" for product "Gl-mt2500" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-mt2500a Firmware Search vendor "Gl-inet" for product "Gl-mt2500a Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-mt2500a Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-mt2500a Search vendor "Gl-inet" for product "Gl-mt2500a" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-axt1800 Firmware Search vendor "Gl-inet" for product "Gl-axt1800 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-axt1800 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-axt1800 Search vendor "Gl-inet" for product "Gl-axt1800" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-a1300 Firmware Search vendor "Gl-inet" for product "Gl-a1300 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-a1300 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-a1300 Search vendor "Gl-inet" for product "Gl-a1300" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-ax1800 Firmware Search vendor "Gl-inet" for product "Gl-ax1800 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-ax1800 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-ax1800 Search vendor "Gl-inet" for product "Gl-ax1800" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-sft1200 Firmware Search vendor "Gl-inet" for product "Gl-sft1200 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-sft1200 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-sft1200 Search vendor "Gl-inet" for product "Gl-sft1200" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-mt1300 Firmware Search vendor "Gl-inet" for product "Gl-mt1300 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-mt1300 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-mt1300 Search vendor "Gl-inet" for product "Gl-mt1300" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-e750 Firmware Search vendor "Gl-inet" for product "Gl-e750 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-e750 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-e750 Search vendor "Gl-inet" for product "Gl-e750" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-mv1000 Firmware Search vendor "Gl-inet" for product "Gl-mv1000 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-mv1000 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-mv1000 Search vendor "Gl-inet" for product "Gl-mv1000" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-mv1000w Firmware Search vendor "Gl-inet" for product "Gl-mv1000w Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-mv1000w Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-mv1000w Search vendor "Gl-inet" for product "Gl-mv1000w" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-s10 Firmware Search vendor "Gl-inet" for product "Gl-s10 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-s10 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-s10 Search vendor "Gl-inet" for product "Gl-s10" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-s200 Firmware Search vendor "Gl-inet" for product "Gl-s200 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-s200 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-s200 Search vendor "Gl-inet" for product "Gl-s200" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-s1300 Firmware Search vendor "Gl-inet" for product "Gl-s1300 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-s1300 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-s1300 Search vendor "Gl-inet" for product "Gl-s1300" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-sf1200 Firmware Search vendor "Gl-inet" for product "Gl-sf1200 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-sf1200 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-sf1200 Search vendor "Gl-inet" for product "Gl-sf1200" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-b1300 Firmware Search vendor "Gl-inet" for product "Gl-b1300 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-b1300 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-b1300 Search vendor "Gl-inet" for product "Gl-b1300" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-b2200 Firmware Search vendor "Gl-inet" for product "Gl-b2200 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-b2200 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-b2200 Search vendor "Gl-inet" for product "Gl-b2200" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-ap1300 Firmware Search vendor "Gl-inet" for product "Gl-ap1300 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-ap1300 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-ap1300 Search vendor "Gl-inet" for product "Gl-ap1300" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-ap1300lte Firmware Search vendor "Gl-inet" for product "Gl-ap1300lte Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-ap1300lte Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-ap1300lte Search vendor "Gl-inet" for product "Gl-ap1300lte" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-x1200 Firmware Search vendor "Gl-inet" for product "Gl-x1200 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-x1200 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-x1200 Search vendor "Gl-inet" for product "Gl-x1200" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-x750 Firmware Search vendor "Gl-inet" for product "Gl-x750 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-x750 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-x750 Search vendor "Gl-inet" for product "Gl-x750" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-x300b Firmware Search vendor "Gl-inet" for product "Gl-x300b Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-x300b Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-x300b Search vendor "Gl-inet" for product "Gl-x300b" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-xe300 Firmware Search vendor "Gl-inet" for product "Gl-xe300 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-xe300 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-xe300 Search vendor "Gl-inet" for product "Gl-xe300" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-ar750s Firmware Search vendor "Gl-inet" for product "Gl-ar750s Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-ar750s Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-ar750s Search vendor "Gl-inet" for product "Gl-ar750s" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-ar750 Firmware Search vendor "Gl-inet" for product "Gl-ar750 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-ar750 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-ar750 Search vendor "Gl-inet" for product "Gl-ar750" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-mifi Firmware Search vendor "Gl-inet" for product "Gl-mifi Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-mifi Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-mifi Search vendor "Gl-inet" for product "Gl-mifi" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-mt300n-v2 Firmware Search vendor "Gl-inet" for product "Gl-mt300n-v2 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-mt300n-v2 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-mt300n-v2 Search vendor "Gl-inet" for product "Gl-mt300n-v2" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-ar300m Firmware Search vendor "Gl-inet" for product "Gl-ar300m Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-ar300m Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-ar300m Search vendor "Gl-inet" for product "Gl-ar300m" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Gl-usb150 Firmware Search vendor "Gl-inet" for product "Gl-usb150 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Gl-usb150 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Gl-usb150 Search vendor "Gl-inet" for product "Gl-usb150" | - | - |
Safe
|
| Gl-inet Search vendor "Gl-inet" | Microuter-n300 Firmware Search vendor "Gl-inet" for product "Microuter-n300 Firmware" | < 3.216 Search vendor "Gl-inet" for product "Microuter-n300 Firmware" and version " < 3.216" | - |
Affected
| in | Gl-inet Search vendor "Gl-inet" | Microuter-n300 Search vendor "Gl-inet" for product "Microuter-n300" | - | - |
Safe
|