Description
Authentication bypass issue exists in MR-GM5L-S1 and MR-GM5A-L1, which may allow an attacker to bypass authentication and change the device configuration.
References (2)
Core 2
Core References
Various Sources
https://jvn.jp/en/vu/JVNVU98103854/
Various Sources
https://www.mrl.co.jp/download/security/JVNVU98103854.pdf
Scores
CVSS v3
9.8
EPSS
0.0056
EPSS Percentile
41.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
total
Details
CWE
CWE-288
Status
published
Published
Mar 11, 2026
Tracked Since
Mar 11, 2026