CVE-2026-36608 in AC12G情報

要約

〜によって MITRE • 2026年06月03日

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows UPnP AddPortMapping to forward external ports to the router's own admin interface by accepting its own IP (192.168.1.1) or localhost (127.0.0.1) as InternalClient. An unauthenticated LAN attacker can expose the admin panel to the internet with a single SOAP request.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

MITRE

予約する

2026年04月06日

公開

2026年06月03日

モデレーション

承諾済み

エントリ

VDB-368207

CPE

準備完了

CWE

CWE-441 (確認済み)

CVSS

8.8 (CISA-ADP)

EPSS

0.00016

KEV

いいえ

アクティビティ

低い

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-36608
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-36608
CVE Details	https://www.cvedetails.com/cve/CVE-2026-36608/

◂ 前概要次 ▸

Do you know our Splunk app?

Download it now for free!