CVE-2025-67091 | GL-iNet AX1800 4.6.4/4.6.8 API Call /tmp improper authentication

January 8, 2026 Yanac

A vulnerability was found in GL-iNet AX1800 4.6.4/4.6.8. It has been classified as critical. The impacted element is an unknown function of the file /tmp of the component API Call Handler. Performing a manipulation results in improper authentication.

This vulnerability is cataloged as CVE-2025-67091. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More