CVE Catalog

CVE-2026-11406

MediumCVSS 6.3
Published: Updated: Translated: NVD NIST

Summary

A vulnerability was identified in GL.iNet MT3000 up to version 4.4.5, affecting unknown code in the ovpnclient.sh file of the OpenVPN Client Import Workflow component. This vulnerability leads to command injection.

Risk Assessment

Remote exploitation of this vulnerability may lead to unauthorized access and potential damage to the system. Organizations should be aware of the risks associated with the publicly disclosed exploit.

Recommendation

It is recommended to upgrade to version 4.9.0_beta3-1012-0513-1778656146 to resolve this issue. Additionally, implement further security checks on OpenVPN configuration files.

Original NVD description (English source)

A vulnerability was determined in GL.iNet MT3000 up to 4.4.5. This vulnerability affects unknown code of the file ovpnclient.sh of the component OpenVPN Client Import Workflow. This manipulation causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized. Upgrading to version 4.9.0_beta3-1012-0513-1778656146 is able to resolve this issue. You should upgrade the affected component. The vendor confirms: "This issue has been addressed by implementing malicious checks on OpenVPN configuration files to prevent command injection attacks carried through malicious configuration files."

Vulnerability data from NVD (NIST) · CISA KEV · EPSS