CVE-2026-5959 | GL.iNet GL-RM1/GL-RM10/GL-RM10RC/GL-RM1PE 1.8.1 Factory Reset improper authentication

A vulnerability, which was classified as critical, has been found in GL.iNet GL-RM1, GL-RM10, GL-RM10RC and GL-RM1PE 1.8.1. Affected by this issue is some unknown functionality of the component Factory Reset Handler. Performing a manipulation results in improper authentication.

This vulnerability is identified as CVE-2026-5959. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.

The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

CVE-2026-5959 | GL.iNet GL-RM1/GL-RM10/GL-RM10RC/GL-RM1PE 1.8.1 Factory Reset improper authentication

Post correlati

CVE-2025-46703 | Hallo Welt BlueSpice up to 5.1.1 cross site scripting

CVE-2021-38963 | IBM Aspera Console up to 3.4.4 File csv injection

CVE-2024-3545 | Devolutions Server/Remote Desktop Manager Vault Offline Cache information disclosure (DEVO-2024-0006)

CVE-2024-2750 | Exclusive Addons for Elementor Plugin up to 2.6.9.3 on WordPress Button Widget cross site scripting