Vulnerability CVE-2023-46456


Published: 2023-12-12   Modified: 2023-12-14

Description:
In GL.iNET GL-AR300M routers with firmware 3.216 it is possible to inject arbitrary shell commands through the OpenVPN client file upload functionality.

See advisories in our WLB2 database:
Topic
Author
Date
Low
GL.iNet AR300M v3.216 Remote Code Execution CVE-2023-46456 Exploit
Michele 'cy...
03.03.2024

 References:
https://www.gl-inet.com/
https://cyberaz0r.info/2023/11/glinet-multiple-vulnerabilities/

Copyright 2024, cxsecurity.com

 

Back to Top