CVE advisoryCRITICAL
CVE-2023-29778
GL.iNET MT3000 OS Command Injection in logread
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A critical OS command injection vulnerability exists in GL.iNET MT3000 routers, allowing unauthenticated remote attackers to execute arbitrary commands by exploiting the logread RPC. This could lead to unauthorized access and control of the device if network-accessible. Determining the presence and exposure of these ro