CVE-2026-11505

CVSS v3.1

5.0

Medium

Vector

AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions GL.iNet A1300 versions prior to 4.9.0 GL.iNet AX1800 versions prior to 4.9.0 GL.iNet AXT1800 versions prior to 4.9.0 GL.iNet MT2500 versions prior to 4.9.0 GL.iNet MT3000 versions prior to 4.9.0 GL.iNet MT6000 versions prior to 4.9.0 GL.iNet X3000 versions prior to 4.9.0 GL.iNet XE3000 versions prior to 4.9.0

Description A flaw in the glnassys component allows a remote attacker to manipulate the system, leading to the use of a hard-coded cryptographic key. This attack is characterized by high complexity and is reported as difficult to exploit.

Recommendations Update to version 4.9.0 Upgrade the glnassys component

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-320CWE-321

Related Identifiers

CVE-2026-11505

Affected Products

A1300

Axt1800

Mt2500

Mt3000

Mt6000

X3000

Xe3000

CVE-2026-11505

Weakness Enumeration

Related Identifiers

Affected Products

References · 8