Security Advisory

CVE-2026-26795

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-12 00:00:00

Last updated 2026-03-14 03:30:31

Assigner mitre

State PUBLISHED

Description

GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the module parameter in the M.get_system_log function. This vulnerability allows attackers to execute arbitrary commands via a crafted input.

← Browse all CVEs View on cve.org ↗