CRITICAL🇵🇱 Wersja polska

CVE-2023-50919

CVSS 9.8v3.1pub. 2024-01-12upd. 2025-06-03

An issue was discovered on GL.iNet devices before version 4.5.0. There is an NGINX authentication bypass via Lua string pattern matching. This affects A1300 4.4.6, AX1800 4.4.6, AXT1800 4.4.6, MT3000 4.4.6, MT2500 4.4.6, MT6000 4.5.0, MT1300 4.3.7, MT300N-V2 4.3.7, AR750S 4.3.7, AR750 4.3.7, AR300M 4.3.7, and B1300 4.3.7.

🤖 AI Analysis
How it works

The authentication mechanism based on NGINX uses Lua patterns (Lua string pattern matching) for request verification. Incorrect implementation of these patterns allows crafting an HTTP request in such a way that access control is bypassed — an attacker gains access to protected resources without providing valid credentials. The vulnerability is remotely exploitable without the need for authentication, user interaction, or special privileges. According to the published exploit, it also enables remote command execution (RCE) on the device.

Impact

An attacker can gain full unauthorized access to the device's management interface, resulting in the ability to read configuration, modify network settings, and execute arbitrary operating system commands remotely (RCE).

Mitigation & patch

GL.iNet device firmware should be updated to version 4.5.0 or newer. The manufacturer has published patch details in the repository: https://github.com/gl-inet/CVE-issues/blob/main/4.0.0/Authentication-bypass.md. Until the patch is deployed, it is recommended to restrict access to the management interface only to trusted IP addresses and isolate devices from the public network.

Who is affected

GL.iNet devices with firmware prior to version 4.5.0: A1300 4.4.6, AX1800 4.4.6, AXT1800 4.4.6, MT3000 4.4.6, MT2500 4.4.6, MT6000 4.5.0, MT1300 4.3.7, MT300N-V2 4.3.7, AR750S 4.3.7, AR750 4.3.7, AR300M 4.3.7, B1300 4.3.7

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Gl Inet Gl A1300

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl A1300 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Ar300m

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Ar300m Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Ar750

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Ar750 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Ar750s

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Ar750s Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Ax1800

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Ax1800 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Axt1800

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Axt1800 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl B1300

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl B1300 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Mt1300

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Mt1300 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Mt2500

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Mt2500 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Mt3000

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Mt3000 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Mt300n V2

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Mt300n V2 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
  • Gl Inet Gl Mt6000

    HW
    Gl-Inet
    wszystkie wersje
  • Gl Inet Gl Mt6000 Firmware

    OS
    Gl-Inet
    4.3.74.4.6
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2023-50921CRITICAL9.8PL ✓ten sam produkt

GL.iNet: privilege escalation przez interfejs add_user do uprawnień root

CVE-2023-46456CRITICAL9.8PL ✓ten sam produkt

GL.iNET GL-AR300M: command injection przez upload pliku konfiguracji OpenVPN

CVE-2023-46454CRITICAL9.8PL ✓ten sam produkt

Command injection w routerach GL.iNET GL-AR300M przez nazwę pakietu

CVE-2023-47463CRITICAL9.8PL ✓ten sam produkt

RCE w GL.iNet AX1800 przez błędne uprawnienia funkcji uwierzytelniania

CVE-2023-47462CRITICAL9.8PL ✓ten sam produkt

Nieprawidłowe uprawnienia w GL.iNet AX1800 umożliwiające zdalne wykonanie kodu