CRITICALCVE-2026-27842Published 2026-03-11Modified 2026-03-11CNA jpcert

CVE-2026-27842: Authentication bypass issue exists in MR-GM5L-S1 and MR-GM5A-L1, which may allow an attacker to bypass authentication and change the device configuration

Authentication bypass issue exists in MR-GM5L-S1 and MR-GM5A-L1, which may allow an attacker to bypass authentication and change the device configuration.

CVSS v4.0: 9.3
Severity: CRITICAL
Fixed in: —
Affected Products: 2

Affected packages

Micro Research Ltd. / MR-GM5L-S1
firmware versions prior to v2.01.04N1_02
Micro Research Ltd. / MR-GM5A-L1
firmware versions prior to v2.01.04N1_02

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

mrl.co.jp
jvn.jp

Metrics