Vulnerabilities > GL Inet > GL Ax1800 Firmware > 4.0.0

DATE CVE VULNERABILITY TITLE RISK
2023-11-30 CVE-2023-47463 Improper Preservation of Permissions vulnerability in Gl-Inet Gl-Ax1800 Firmware 4.0.0/4.3.7/4.4.6
Insecure Permissions vulnerability in GL.iNet AX1800 version 4.0.0 before 4.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the gl_nas_sys authentication function.
network
low complexity
gl-inet CWE-281
critical
9.8
2023-11-30 CVE-2023-47464 Path Traversal vulnerability in Gl-Inet Gl-Ax1800 Firmware 4.0.0/4.3.7/4.4.6
Insecure Permissions vulnerability in GL.iNet AX1800 version 4.0.0 before 4.5.0 allows a remote attacker to execute arbitrary code via the upload API function.
network
low complexity
gl-inet CWE-22
8.8