CVE-2024-45261

An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The SID generated for a specific user is not tied to that user itself, which allows other users to potentially use it for authentication. Once an attacker bypasses the application's authentication procedures, they can generate a valid SID, escalate privileges, and gain full control.

CVSS v3 8.0 HIGH

8.0^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/gl-inet/CVE-issues/blob/main/4.0.0/Bypassing%20Login%20Mechanism%20with%20Passwordless%20User%20Login.md	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:gl-inet:mt2500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:mt2500:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:gl-inet:axt1800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:axt1800:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:gl-inet:ax1800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:ax1800:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:gl-inet:b3000_firmware:4.5.18:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:b3000:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:gl-inet:a1300_firmware:4.5.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:a1300:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:gl-inet:x300b_firmware:4.5.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:x300b:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:gl-inet:x3000_firmware:4.4.9:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:x3000:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:gl-inet:xe3000_firmware:4.4.9:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:xe3000:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:gl-inet:x750_firmware:4.3.18:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:x750:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:gl-inet:sft1200_firmware:4.3.18:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:sft1200:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:gl-inet:mt1300_firmware:4.3.18:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:mt1300:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:gl-inet:e750_firmware:4.3.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:e750:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:gl-inet:xe300_firmware:4.3.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:xe300:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:gl-inet:ar750_firmware:4.3.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:ar750:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:gl-inet:ar750s_firmware:4.3.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:ar750s:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:gl-inet:ar300m_firmware:4.3.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:ar300m:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:gl-inet:mt300n-v2_firmware:4.3.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:mt300n-v2:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:gl-inet:mt3000_firmware:4.6.2:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:gl-mt3000:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:gl-inet:ar300m16_firmware:4.3.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:ar300m16:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:gl-inet:mt6000_firmware:4.6.2:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:mt6000:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:gl-inet:b1300_firmware:4.3.17:*:*:*:*:*:*:*

cpe:2.3:h:gl-inet:b1300:-:*:*:*:*:*:*:*

History

15 Oct 2025, 17:54

Type	Values Removed	Values Added
References	~~() https://github.com/gl-inet/CVE-issues/blob/main/4.0.0/Bypassing%20Login%20Mechanism%20with%20Passwordless%20User%20Login.md -~~	() https://github.com/gl-inet/CVE-issues/blob/main/4.0.0/Bypassing%20Login%20Mechanism%20with%20Passwordless%20User%20Login.md - Exploit, Third Party Advisory
CPE		cpe:2.3:h:gl-inet:a1300:-:::::::* cpe:2.3:h:gl-inet:ar750:-:::::::* cpe:2.3:h:gl-inet:xe300:-:::::::* cpe:2.3:h:gl-inet:mt6000:-:::::::* cpe:2.3:o:gl-inet:ax1800_firmware:::::::: cpe:2.3:h:gl-inet:mt1300:-:::::::* cpe:2.3:h:gl-inet:e750:-:::::::* cpe:2.3:o:gl-inet:ar750s_firmware:4.3.17:::::::* cpe:2.3:o:gl-inet:ar750_firmware:4.3.17:::::::* cpe:2.3:o:gl-inet:mt3000_firmware:4.6.2:::::::* cpe:2.3:o:gl-inet:b3000_firmware:4.5.18:::::::* cpe:2.3:o:gl-inet:x300b_firmware:4.5.17:::::::* cpe:2.3:o:gl-inet:mt2500_firmware:::::::: cpe:2.3:h:gl-inet:xe3000:-:::::::* cpe:2.3:o:gl-inet:mt1300_firmware:4.3.18:::::::* cpe:2.3:h:gl-inet:axt1800:-:::::::* cpe:2.3:h:gl-inet:gl-mt3000:-:::::::* cpe:2.3:h:gl-inet:ar750s:-:::::::* cpe:2.3:h:gl-inet:ar300m:-:::::::* cpe:2.3:o:gl-inet:a1300_firmware:4.5.17:::::::* cpe:2.3:o:gl-inet:mt6000_firmware:4.6.2:::::::* cpe:2.3:h:gl-inet:b1300:-:::::::* cpe:2.3:h:gl-inet:b3000:-:::::::* cpe:2.3:h:gl-inet:sft1200:-:::::::* cpe:2.3:o:gl-inet:x3000_firmware:4.4.9:::::::* cpe:2.3:h:gl-inet:ax1800:-:::::::* cpe:2.3:h:gl-inet:ar300m16:-:::::::* cpe:2.3:o:gl-inet:b1300_firmware:4.3.17:::::::* cpe:2.3:o:gl-inet:ar300m_firmware:4.3.17:::::::* cpe:2.3:h:gl-inet:x300b:-:::::::* cpe:2.3:o:gl-inet:axt1800_firmware:::::::: cpe:2.3:o:gl-inet:sft1200_firmware:4.3.18:::::::* cpe:2.3:h:gl-inet:x750:-:::::::* cpe:2.3:h:gl-inet:mt2500:-:::::::* cpe:2.3:h:gl-inet:mt300n-v2:-:::::::* cpe:2.3:o:gl-inet:e750_firmware:4.3.17:::::::* cpe:2.3:o:gl-inet:xe300_firmware:4.3.17:::::::* cpe:2.3:h:gl-inet:x3000:-:::::::* cpe:2.3:o:gl-inet:ar300m16_firmware:4.3.17:::::::* cpe:2.3:o:gl-inet:x750_firmware:4.3.18:::::::* cpe:2.3:o:gl-inet:mt300n-v2_firmware:4.3.17:::::::* cpe:2.3:o:gl-inet:xe3000_firmware:4.4.9:::::::*
First Time		Gl-inet mt1300 Firmware Gl-inet ar750 Firmware Gl-inet a1300 Gl-inet mt6000 Firmware Gl-inet x300b Gl-inet b1300 Firmware Gl-inet ax1800 Gl-inet xe3000 Gl-inet e750 Gl-inet ar750s Firmware Gl-inet x750 Gl-inet ax1800 Firmware Gl-inet b3000 Firmware Gl-inet ar750s Gl-inet axt1800 Firmware Gl-inet x3000 Gl-inet e750 Firmware Gl-inet mt3000 Firmware Gl-inet ar300m Gl-inet ar750 Gl-inet sft1200 Gl-inet Gl-inet a1300 Firmware Gl-inet ar300m16 Gl-inet mt6000 Gl-inet mt2500 Firmware Gl-inet b3000 Gl-inet x300b Firmware Gl-inet xe300 Gl-inet axt1800 Gl-inet xe3000 Firmware Gl-inet gl-mt3000 Gl-inet b1300 Gl-inet x750 Firmware Gl-inet xe300 Firmware Gl-inet mt300n-v2 Firmware Gl-inet sft1200 Firmware Gl-inet ar300m Firmware Gl-inet mt1300 Gl-inet ar300m16 Firmware Gl-inet mt300n-v2 Gl-inet mt2500 Gl-inet x3000 Firmware

28 Oct 2024, 20:35

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.0
CWE		CWE-863

25 Oct 2024, 12:56

Type	Values Removed	Values Added
Summary		(es) Se descubrió un problema en ciertos dispositivos GL-iNet, incluidos MT6000, MT3000, MT2500, AXT1800 y AX1800 4.6.2. El SID generado para un usuario específico no está vinculado a ese usuario en sí, lo que permite que otros usuarios lo utilicen potencialmente para la autenticación. Una vez que un atacante elude los procedimientos de autenticación de la aplicación, puede generar un SID válido, escalar privilegios y obtener el control total.

24 Oct 2024, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-10-24 21:15

Updated : 2025-10-15 17:54

NVD link : CVE-2024-45261

Mitre link : CVE-2024-45261

CVE.ORG link : CVE-2024-45261

JSON object : View

Products Affected

gl-inet

axt1800
x3000_firmware
x750
mt300n-v2_firmware
sft1200
mt6000
ax1800
ar300m16_firmware
ar750s_firmware
e750_firmware
mt1300
x750_firmware
b3000
a1300_firmware
ar300m
xe3000_firmware
e750
ar300m16
a1300
xe300_firmware
b1300
b1300_firmware
mt300n-v2
mt1300_firmware
ax1800_firmware
x300b_firmware
axt1800_firmware
mt2500_firmware
xe300
sft1200_firmware
b3000_firmware
ar750_firmware
xe3000
ar300m_firmware
x300b
ar750s
mt6000_firmware
x3000
gl-mt3000
mt3000_firmware
mt2500
ar750

CWE

CWE-863

Incorrect Authorization

8.0 /10