CVE-2023-46455

EPSS 47.0%CWE-22

In GL.iNET GL-AR300M routers with firmware v4.3.7 it is possible to write arbitrary files through a path traversal attack in the OpenVPN client file upload functionality.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cyberaz0r.info/2023/11/glinet-multiple-vulnerabilities/https://www.gl-inet.com/