MR-GM5L-S1 and MR-GM5A-L1: Authentication Bypass Allows Configuration Changes

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.3

MR-GM5L-S1 and MR-GM5A-L1: Authentication Bypass Allows Configuration Changes

CVE-2026-27842

Summary

An attacker can exploit a vulnerability in these devices to bypass authentication and make unauthorized changes to their configuration. This could allow an attacker to compromise the security and functionality of the device. To protect your device, update to the latest firmware and ensure all users follow proper security procedures.

Original title

Authentication bypass issue exists in MR-GM5L-S1 and MR-GM5A-L1, which may allow an attacker to bypass authentication and change the device configuration.

Original description

Authentication bypass issue exists in MR-GM5L-S1 and MR-GM5A-L1, which may allow an attacker to bypass authentication and change the device configuration.

nvd CVSS3.0 9.8

nvd CVSS4.0 9.3

Vulnerability type

CWE-288 Authentication Bypass Using Alternate Path

Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026