CVE-2026-36611 in AC12Gالمعلومات

الملخص

بحسب MITRE • 03/06/2026

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 returns 128 bytes of uninitialized buffer when receiving POST requests without SOAPAction header on UPnP port 1900, exposing internal memory to unauthenticated adjacent network attackers.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

MITRE

حجز

06/04/2026

إفشاء

03/06/2026

الاعتدال

تمت الموافقة

إدخال

VDB-368199

CPE

جاهز

CWE

CWE-824 (مؤكد)

CVSS

8.8 (VulDB)

EPSS

0.00000

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-36611
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-36611
CVE Details	https://www.cvedetails.com/cve/CVE-2026-36611/

التالي ▸نظرة عامة ◂ السابق

Want to know what is going to be exploited?

We predict KEV entries!