CVE-2026-11406
MediumCVSS 6.3Summary
A vulnerability was identified in GL.iNet MT3000 up to version 4.4.5, affecting unknown code in the ovpnclient.sh file of the OpenVPN Client Import Workflow component. This vulnerability leads to command injection.
Risk Assessment
Remote exploitation of this vulnerability may lead to unauthorized access and potential damage to the system. Organizations should be aware of the risks associated with the publicly disclosed exploit.
Recommendation
It is recommended to upgrade to version 4.9.0_beta3-1012-0513-1778656146 to resolve this issue. Additionally, implement further security checks on OpenVPN configuration files.
Original NVD description (English source)
A vulnerability was determined in GL.iNet MT3000 up to 4.4.5. This vulnerability affects unknown code of the file ovpnclient.sh of the component OpenVPN Client Import Workflow. This manipulation causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized. Upgrading to version 4.9.0_beta3-1012-0513-1778656146 is able to resolve this issue. You should upgrade the affected component. The vendor confirms: "This issue has been addressed by implementing malicious checks on OpenVPN configuration files to prevent command injection attacks carried through malicious configuration files."

