CVE-2026-36356

CRITICAL EXPLOITED

MeiG Smart FORGE_SLT711 MDM9607.LE.1.0-00110 - Command Injection

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2026-36356 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 2 public exploits from researchers including Daniil Gordeev, totekuh.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated OS command injection vulnerability in MeiG Smart FORGE_SLT711 devices. The exploit leverages a JSON field injection in the /action/SetRemoteAccessCfg endpoint, which passes user-controlled input to a system() call, allowing arbitrary command execution as root.

Description

The GoAhead web server on MeiG Smart FORGE_SLT711 devices (firmware MDM9607.LE.1.0-00110-STD.PROD-1) allows unauthenticated OS command injection via the /action/SetRemoteAccessCfg endpoint.

Exploits (2)

exploitdb WORKING POC
by Daniil Gordeev · pythonhardwarelinux
https://www.exploit-db.com/exploits/52581

This exploit demonstrates an unauthenticated OS command injection vulnerability in MeiG Smart FORGE_SLT711 devices. The exploit leverages a JSON field injection in the /action/SetRemoteAccessCfg endpoint, which passes user-controlled input to a system() call, allowing arbitrary command execution as root.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: MeiG FORGE_SLT711 (Ortel 4G LTE CPE) with firmware MDM9607.LE.1.0-00110-STD.PROD-1
No auth needed
Prerequisites: Network access to the target device · Target device must be running vulnerable firmware
devstral-2 · analyzed May 28, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 9.1
EPSS 0.1539
EPSS Percentile 96.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

VulnCheck KEV 2026-06-21
CWE
CWE-306 CWE-78
Status published
Published May 05, 2026
Tracked Since May 05, 2026