CVE-2024-39226
CRITICAL EPSS 97.2%
Published Aug 6, 20241y ago · Modified Jun 17, 20261w ago
9.8 CVSS 3.1
Published Aug 6, 2024 1y ago
Last Modified Jun 17, 2026 1w ago
Description
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3000/X3000 v4.4 were discovered to contain a vulnerability can be exploited to manipulate routers by passing malicious shell commands through the s2s API.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
97.2% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 2
CWE-22 Path Traversal Resource Mgmt
CWE-77 Command Injection Injection
Affected Products 56
| Vendor | Product | Version | Range |
|---|---|---|---|
| gl-inet | mt6000_firmware | 4.5.8 | any |
| gl-inet | mt6000 | * | any |
| gl-inet | a1300_firmware | 4.5.16 | any |
| gl-inet | a1300 | * | any |
| gl-inet | x300b_firmware | 4.5.16 | any |
| gl-inet | x300b | * | any |
| gl-inet | ax1800_firmware | 4.5.16 | any |
| gl-inet | ax1800 | * | any |
| gl-inet | axt1800_firmware | 4.5.16 | any |
| gl-inet | axt1800 | * | any |
| gl-inet | mt2500_firmware | 4.5.16 | any |
| gl-inet | mt2500 | * | any |
| gl-inet | mt3000_firmware | 4.5.16 | any |
| gl-inet | mt3000 | * | any |
| gl-inet | x3000_firmware | 4.4.8 | any |
| gl-inet | x3000 | * | any |
| gl-inet | xe3000_firmware | 4.4.8 | any |
| gl-inet | xe3000 | * | any |
| gl-inet | xe300_firmware | 4.3.16 | any |
| gl-inet | xe300 | * | any |
| gl-inet | e750_firmware | 4.3.12 | any |
| gl-inet | e750 | * | any |
| gl-inet | x750_firmware | 4.3.11 | any |
| gl-inet | x750 | * | any |
| gl-inet | sft1200_firmware | 4.3.11 | any |
| gl-inet | sft1200 | * | any |
| gl-inet | ar300m_firmware | 4.3.11 | any |
| gl-inet | ar300m | * | any |
| gl-inet | ar300m16_firmware | 4.3.11 | any |
| gl-inet | ar300m16 | * | any |
| gl-inet | ar750_firmware | 4.3.11 | any |
| gl-inet | ar750 | * | any |
| gl-inet | ar750s_firmware | 4.3.11 | any |
| gl-inet | ar750s | * | any |
| gl-inet | b1300_firmware | 4.3.11 | any |
| gl-inet | b1300 | * | any |
| gl-inet | mt1300_firmware | 4.3.11 | any |
| gl-inet | mt1300 | * | any |
| gl-inet | mt300n-v2_firmware | 4.3.11 | any |
| gl-inet | mt300n-v2 | * | any |
| gl-inet | ap1300_firmware | 3.217 | any |
| gl-inet | ap1300 | * | any |
| gl-inet | b2200_firmware | 3.216 | any |
| gl-inet | b2200 | * | any |
| gl-inet | mv1000_firmware | 3.216 | any |
| gl-inet | mv1000 | * | any |
| gl-inet | mv1000w_firmware | 3.216 | any |
| gl-inet | mv1000w | * | any |
| gl-inet | usb150_firmware | 3.216 | any |
| gl-inet | usb150 | * | any |
| gl-inet | sf1200_firmware | 3.216 | any |
| gl-inet | sf1200 | * | any |
| gl-inet | n300_firmware | 3.216 | any |
| gl-inet | n300 | * | any |
| gl-inet | s1300_firmware | 3.216 | any |
| gl-inet | s1300 | * | any |
References 1
- github.com https://github.com/gl-inet/CVE-issues/blob/main/4.0.0/s2s%20interface%20shell%20injection.md
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.