| 제목 | GL.iNet KVM 1.8.1 Access Authentication Bypass |
|---|
| 설명 | This vulnerability fails to clear the user binding relationship after a user binds to the device and then resets it, resulting in the bound user still being able to remotely operate the device after the reset.GL.iNet's official website has fixed this issue in the version 1.8.2 firmware.Thanks to Dustin Eastman, Security Engineer, for identifying this issue. |
|---|
| 원천 | ⚠️ https://github.com/gl-inet/CVE-issues/blob/main/KVM/1.8.1/Remote%20Access%20Authentication%20Bypass%20After%20Factory%20Reset.md |
|---|
| 사용자 | GLiNet (UID 96704) |
|---|
| 제출 | 2026. 03. 24. AM 03:22 (24 날 ago) |
|---|
| 모더레이션 | 2026. 04. 09. AM 11:50 (16 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 356512 [GL.iNet GL-RM1/GL-RM10/GL-RM10RC/GL-RM1PE 1.8.1 Factory Reset 약한 인증] |
|---|
| 포인트들 | 18 |
|---|