VYPR

GL.iNet Router

by Gl Inet

CVEs (2)

  • CVE-2023-31475May 11, 2023
    risk 0.02cvss epss 0.14

    An issue was discovered on GL.iNet devices before 3.216. The function guci2_get() found in libglutil.so has a buffer overflow when an item is requested from a UCI context, and the value is pasted into a char pointer to a buffer without checking the size of the buffer.

  • CVE-2023-31473May 11, 2023
    risk 0.00cvss epss 0.04

    An issue was discovered on GL.iNet devices before 3.216. There is an arbitrary file write in which an empty file can be created anywhere on the filesystem. This is caused by a command injection vulnerability with a filter applied. Through the software installation feature, it is…