Vulnerability Description
An issue was discovered on GL.iNet devices running firmware before 3.216. There is an arbitrary file write in which an empty file can be created almost anywhere on the filesystem, as long as the filename and path is no more than 6 characters (the working directory is /www).
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gl-Inet | Gl-Mv1000W Firmware | <= 3.215 |
| Gl-Inet | Gl-Mv1000W | - |
| Gl-Inet | Gl-Mv1000 Firmware | <= 3.215 |
| Gl-Inet | Gl-Mv1000 | - |
Related Weaknesses (CWE)
References
- https://github.com/gl-inet/CVE-issues/blob/main/3.215/GL-MV1000_Arbitrary_File_CExploitThird Party Advisory
- https://www.gl-inet.comProduct
- https://github.com/gl-inet/CVE-issues/blob/main/3.215/GL-MV1000_Arbitrary_File_CExploitThird Party Advisory
- https://www.gl-inet.comProduct
FAQ
What is CVE-2023-31476?
CVE-2023-31476 is a vulnerability with a CVSS score of 7.5 (HIGH). An issue was discovered on GL.iNet devices running firmware before 3.216. There is an arbitrary file write in which an empty file can be created almost anywhere on the filesystem, as long as the filen...
How severe is CVE-2023-31476?
CVE-2023-31476 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-31476?
Check the references section above for vendor advisories and patch information. Affected products include: Gl-Inet Gl-Mv1000W Firmware, Gl-Inet Gl-Mv1000W, Gl-Inet Gl-Mv1000 Firmware, Gl-Inet Gl-Mv1000.