CVE-2025-44018 – GL-Inet GL-AXT1800 Firmware Downgrade Vulnerability

CVE ID : CVE-2025-44018

Published : Nov. 24, 2025, 4:15 p.m. | 1 hour, 7 minutes ago

Description : A firmware downgrade vulnerability exists in the OTA Update functionality of GL-Inet GL-AXT1800 4.7.0. A specially crafted .tar file can lead to a firmware downgrade. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.

Severity: 8.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…