CRITICAL🇵🇱 Wersja polska

CVE-2026-26793

CVSS 9.8v3.1pub. 2026-03-12upd. 2026-03-13

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the set_config function. This vulnerability allows attackers to execute arbitrary commands via a crafted input.

🤖 AI Analysis
How it works

The vulnerability (CWE-77) consists of insufficient filtering of input data passed to the set_config function. An attacker can prepare specially crafted input containing malicious system commands that will be executed by the device in the context of the operating system. Due to the network vector (AV:N) and lack of authentication requirements (PR:N) and user interaction (UI:N), the exploit can be performed remotely over the network.

Impact

An attacker can execute arbitrary system commands on the device, resulting in a complete breach of confidentiality, integrity, and availability of the system — including the possibility of taking full control of the router.

Mitigation & patch

Patches available from the manufacturer should be applied according to the references. As a temporary measure, it is recommended to restrict access to the device management interface exclusively to trusted local networks and block access from the WAN.

Who is affected

GL-iNet GL-AR300M16 with firmware version v4.3.11

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Gl Inet Ar300m16

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Ar300m16 Firmware

    OS
    Gl-Inet
    4.3.11
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2026-26795CRITICAL9.8PL ✓ten sam produkt

Command injection w GL-iNet GL-AR300M16 via parametr module

CVE-2026-26792CRITICAL9.8PL ✓ten sam produkt

Command injection w GL-iNet GL-AR300M16 — funkcja set_upgrade

CVE-2026-26791CRITICAL9.8PL ✓ten sam produkt

Command injection w GL-iNet GL-AR300M16 — wykonanie dowolnych poleceń

CVE-2024-39225CRITICAL9.8PL ✓ten sam produkt

RCE w firmware GL-iNet — obejście mechanizmu logowania

CVE-2024-39227CRITICAL9.8PL ✓ten sam produkt

GL-iNet: RCE i path traversal w /cgi-bin/glc bez uwierzytelnienia