| タイトル | GL.iNet Router 4.8.x unauthorized |
|---|
| 説明 | In the glnassys component, there is a hard coded default token that allows calling of any APP network storage related interface, resulting in malicious attacks such as command execution.The person who discovered this issue is C7.
https://github.com/gl-inet/CVE-issues/blob/main/4.0.0/The%20hard%20coded%20default%20authentication%20token%20in%20gl%20nas%20sys%20poses%20a%20risk%20to%20unauthorized%20command%20execution.md |
|---|
| ソース | ⚠️ https://github.com/gl-inet/CVE-issues/blob/main/4.0.0/The%20hard%20coded%20default%20authentication%20token%20in%20gl%20nas%20sys%20poses%20a%20risk%20to%20unauthorized%20command%20execution.md |
|---|
| ユーザー | GLiNet (UID 96704) |
|---|
| 送信 | 2026年05月22日 12:19 (21 日 ago) |
|---|
| モデレーション | 2026年06月07日 16:06 (16 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 369125 [GL.iNet XE3000 4.8.x glnassys 弱い暗号化] |
|---|
| ポイント | 20 |
|---|