CVE-2024-39227
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3000/X3000 v4.4 were discovered to contain a shell injection vulnerability via the interface check_ovpn_client_config.
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3000/X3000 v4.4 were discovered to contain insecure permissions in the endpoint /cgi-bin/glc. This vulnerability allows unauthenticated attackers to execute arbitrary code or possibly a directory traversal via crafted JSON data.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-06-21 CVE Reserved
- 2024-08-06 CVE Published
- 2024-08-13 EPSS Updated
- 2024-08-15 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-75: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://ar750ar750sar300mar300m16mt300n-v2b1300mt1300sft1200x750.com | ||
| https://github.com/gl-inet/CVE-issues/blob/main/4.0.0/Access%20to%20the%20C%20library%20without%20logging%20in.md |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Gl-inet Search vendor "Gl-inet" | Gl-a1300 Search vendor "Gl-inet" for product "Gl-a1300" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-ap1300 Search vendor "Gl-inet" for product "Gl-ap1300" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-ar300m16 Search vendor "Gl-inet" for product "Gl-ar300m16" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-ar300m Search vendor "Gl-inet" for product "Gl-ar300m" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-ar300n-v2 Search vendor "Gl-inet" for product "Gl-ar300n-v2" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-ar750 Search vendor "Gl-inet" for product "Gl-ar750" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-ar750s Search vendor "Gl-inet" for product "Gl-ar750s" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-ax1800 Search vendor "Gl-inet" for product "Gl-ax1800" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-axt1800 Search vendor "Gl-inet" for product "Gl-axt1800" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-b1300 Search vendor "Gl-inet" for product "Gl-b1300" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-e750 Search vendor "Gl-inet" for product "Gl-e750" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-mt1300 Search vendor "Gl-inet" for product "Gl-mt1300" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-mt2500 Search vendor "Gl-inet" for product "Gl-mt2500" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-mt3000 Search vendor "Gl-inet" for product "Gl-mt3000" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-s1300 Search vendor "Gl-inet" for product "Gl-s1300" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-sft1200 Search vendor "Gl-inet" for product "Gl-sft1200" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-x3000 Search vendor "Gl-inet" for product "Gl-x3000" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-x300b Search vendor "Gl-inet" for product "Gl-x300b" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-x750 Search vendor "Gl-inet" for product "Gl-x750" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-xe3000 Search vendor "Gl-inet" for product "Gl-xe3000" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Gl-xe300 Search vendor "Gl-inet" for product "Gl-xe300" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | A1300 Firmware Search vendor "Gl-inet" for product "A1300 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Ap1300 Firmware Search vendor "Gl-inet" for product "Ap1300 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Ar300m16 Firmware Search vendor "Gl-inet" for product "Ar300m16 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Ar300m Firmware Search vendor "Gl-inet" for product "Ar300m Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Ar750 Firmware Search vendor "Gl-inet" for product "Ar750 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Ar750s Firmware Search vendor "Gl-inet" for product "Ar750s Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Ax1800 Firmware Search vendor "Gl-inet" for product "Ax1800 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Axt1800 Firmware Search vendor "Gl-inet" for product "Axt1800 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | B1300 Firmware Search vendor "Gl-inet" for product "B1300 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | B2200 Firmware Search vendor "Gl-inet" for product "B2200 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | E750 Firmware Search vendor "Gl-inet" for product "E750 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Mt1300 Firmware Search vendor "Gl-inet" for product "Mt1300 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Mt2500 Firmware Search vendor "Gl-inet" for product "Mt2500 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Mt3000 Firmware Search vendor "Gl-inet" for product "Mt3000 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Mt300n-v2 Firmware Search vendor "Gl-inet" for product "Mt300n-v2 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Mt6000 Firmware Search vendor "Gl-inet" for product "Mt6000 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Mv1000 Firmware Search vendor "Gl-inet" for product "Mv1000 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Mv1000w Firmware Search vendor "Gl-inet" for product "Mv1000w Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | N300 Firmware Search vendor "Gl-inet" for product "N300 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | S1300 Firmware Search vendor "Gl-inet" for product "S1300 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Sf1200 Firmware Search vendor "Gl-inet" for product "Sf1200 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Sft1200 Firmware Search vendor "Gl-inet" for product "Sft1200 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Usb150 Firmware Search vendor "Gl-inet" for product "Usb150 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | X3000 Firmware Search vendor "Gl-inet" for product "X3000 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | X300b Firmware Search vendor "Gl-inet" for product "X300b Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | X750 Firmware Search vendor "Gl-inet" for product "X750 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Xe3000 Firmware Search vendor "Gl-inet" for product "Xe3000 Firmware" | * | - |
Affected
| ||||||
| Gl-inet Search vendor "Gl-inet" | Xe300 Firmware Search vendor "Gl-inet" for product "Xe300 Firmware" | * | - |
Affected
| ||||||