| عنوان | GL.iNet KVM 1.8.1 Access Authentication Bypass |
|---|
| الوصف | This vulnerability fails to clear the user binding relationship after a user binds to the device and then resets it, resulting in the bound user still being able to remotely operate the device after the reset.GL.iNet's official website has fixed this issue in the version 1.8.2 firmware.Thanks to Dustin Eastman, Security Engineer, for identifying this issue. |
|---|
| المصدر | ⚠️ https://github.com/gl-inet/CVE-issues/blob/main/KVM/1.8.1/Remote%20Access%20Authentication%20Bypass%20After%20Factory%20Reset.md |
|---|
| المستخدم | GLiNet (UID 96704) |
|---|
| ارسال | 24/03/2026 03:22 AM (25 أيام منذ) |
|---|
| الاعتدال | 09/04/2026 11:50 AM (16 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 356512 [GL.iNet GL-RM1/GL-RM10/GL-RM10RC/GL-RM1PE 1.8.1 Factory Reset توثيق ضعيف] |
|---|
| النقاط | 18 |
|---|