By weakness (CWE)
CWE-320: related vulnerabilities
CVEs classified under CWE-320. Understanding the weakness class helps prioritize systemic fixes over one-off patches.
1 published vulnerability
- CVE-2026-11505MEDIUM 5.0
GL.iNet routers across multiple models (A1300, AX1800, AXT1800, MT2500, MT3000, MT6000, X3000, XE3000) running firmware version 4.8.x contain a flaw in the glnassys component that exposes a hard-coded cryptographic key. An authenticated attacker with network access can exploit this to gain unauthorized cryptographic capabilities. The vulnerability requires significant technical skill and specific conditions to exploit, placing it in the medium-risk category. A firmware upgrade to version 4.9.0 resolves the issue.