{"vulnerability": "CVE-2026-12186", "sightings": [{"uuid": "a5374964-6669-4aba-8e4e-58e5a1774594", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12186", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116750589949096351", "content": "\ud83d\udd0d CVE-2026-12186 (HIGH, CVSS 8.7) hits GL.iNet GL-MT3000 (4.4.0 \u2013 4.4.5): Remote command injection via Tor Proxy config handler. Exploit is public \u2014 patch to 4.7 now! https://radar.offseq.com/threat/cve-2026-12186-command-injection-in-glinet-gl-mt30-8e4f5f3d #OffSeq #Vulnerability #Infosec #IoTSecurity", "creation_timestamp": "2026-06-14T21:30:26.381884Z"}, {"uuid": "8983106a-2b35-4b2e-a786-945c56538064", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12186", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mobppl4w6p2y", "content": "HIGH severity alert: GL.iNet GL-MT3000 (4.4.0 \u2013 4.4.5) is vulnerable to remote command injection. Exploit is public \u2014 upgrade to 4.7+ now! https://radar.offseq.com/threat/cve-2026-12186-command-injection-in-glinet-gl-mt30-8e4f5f3d #OffSeq #Vulnerability #IoTSecurity", "creation_timestamp": "2026-06-14T21:30:27.890678Z"}, {"uuid": "5ea53f50-3b41-4580-8e0e-ed39f5695fb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12186", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mobrllebkj2j", "content": "GL.iNet GL-MT3000 (v4.4.5\u4ee5\u4e0b)\u3067\u3001Tor\u30d7\u30ed\u30ad\u30b7\u8a2d\u5b9a\u306b\u30b3\u30de\u30f3\u30c9\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\u3002\u30ea\u30e2\u30fc\u30c8\u304b\u3089\u306e\u653b\u6483\u304c\u53ef\u80fd\u3002v4.7\u3067\u4fee\u6b63\u3002\nCVE-2026-12186 CVSS 8.8 | HIGH", "creation_timestamp": "2026-06-14T22:04:17.339482Z"}, {"uuid": "7289f498-e0b2-4c62-b08d-ccfb115b4a0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12186", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mobxxtsew62x", "content": "CVE-2026-12186 - GL.iNet GL-MT3000 Tor Proxy Service Configuration tor replace_country command injection\nCVE ID : CVE-2026-12186\n \n Published : June 14, 2026, 9:16 p.m. | 2\u00a0hours, 25\u00a0minutes ago\n \n Description : A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. ...", "creation_timestamp": "2026-06-14T23:58:27.699858Z"}, {"uuid": "e87cbb97-4108-4a6e-98ae-070a0226aef5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12186", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moby46cofm2c", "content": "\ud83d\udfe0 CVE-2026-12186 - High (8.8)\n\nA weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replace...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-12186/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-15T00:00:40.636135Z"}, {"uuid": "95720c10-239e-4256-9baf-fc7b8afa321f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-12186", "type": "seen", "source": "https://www.acn.gov.it/portale/w/poc-pubblici-per-le-cve-2026-12186-e-cve-2026-12187", "content": "", "creation_timestamp": "2026-06-15T05:53:14.000000Z"}]}