cvedb.io
CVE-2023-26866
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2023-04-04T13:15:08.750 · Last modified 2026-06-17T05:43:55.137

Summary

GreenPacket OH736's WR-1200 Indoor Unit, OT-235 with firmware versions M-IDU-1.6.0.3_V1.1 and MH-46360-2.0.3-R5-GP respectively are vulnerable to remote command injection. Commands are executed using pre-login execution and executed with root privileges allowing complete takeover.

Affected products

greenpacket — wr-1200_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when greenpacket ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.