CVE-2026-20892

Summary

Code injection vulnerability exists in MR-GM5L-S1 and MR-GM5A-L1, which may allow an attacker with administrative privileges to execute arbitrary commands.

Affected Software

VendorProductVersion RangeStatus
Micro Research Ltd.MR-GM5L-S1firmware versions prior to v2.01.04N1_02affected
Micro Research Ltd.MR-GM5A-L1firmware versions prior to v2.01.04N1_02affected

Weaknesses

  • CWE-94: Code injection

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References