PatchSiren cyber security CVE debrief
CVE-2026-11406 GL.iNet CVE debrief
A vulnerability was determined in GL.iNet MT3000 up to 4.4.5. This vulnerability affects unknown code of the file ovpnclient.sh of the component OpenVPN Client Import Workflow. This manipulation causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized. Upgrading to version 4.9.0_beta3-1012-0513-1778656146 is able to resolve this issue. You should upgrade the affected component. The vendor confirms: 'This issue has been addressed by implementing malicious checks on OpenVPN configuration files to prevent command injection attacks carried through malicious configuration files.'
- Vendor
- GL.iNet
- Product
- MT3000
- CVSS
- LOW 2.1
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-06
- Original CVE updated
- 2026-06-08
- Advisory published
- 2026-06-06
- Advisory updated
- 2026-06-08
Who should care
Users of GL.iNet MT3000 up to version 4.4.5
Technical summary
The vulnerability is located in the ovpnclient.sh file of the OpenVPN Client Import Workflow. It allows for command injection, which can be exploited remotely.
Defensive priority
Low
Recommended defensive actions
- Upgrade to version 4.9.0_beta3-1012-0513-1778656146 or later
- Implement additional security measures to monitor and restrict access to the OpenVPN Client Import Workflow
Evidence notes
The vendor confirms that the issue has been addressed in version 4.9.0_beta3-1012-0513-1778656146.
Official resources
Publicly disclosed