Lucene search
K

4 matches found

EUVD
EUVD
added 2026/02/25 6:31 p.m.10 views

EUVD-2026-8650

Due to missing neutralization of special elements, OS commands can be injected via the handshake of a TLS-SRP connection, which are ultimately run as the root user. This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200...

5.5AI score0.0032EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/25 4:20 p.m.24 views

CVE-2026-27849 Missing neutralization in Linksys MR9600, Linksys MX4200

Due to missing neutralization of special elements, OS commands can be injected via the update functionality of a TLS-SRP connection, which is normally used for configuring devices inside the mesh network. This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200...

0.00314EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/25 3:3 p.m.9 views

CVE-2026-27846

Due to missing authentication, a user with physical access to the device can misuse the mesh functionality for adding a new mesh device to the network to gain access to sensitive information, including the password for admin access to the web interface and the Wi-Fi passwords.This issue affects...

6.2CVSS5.2AI score0.00138EPSS
Exploits0References2Affected Software2
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.13 views

Linksys MR9600和Linksys MX4200 安全漏洞

The Linksys MR9600 and Linksys MX4200 are both products of the American company Linksys. The Linksys MR9600 is a wireless router. The Linksys MX4200 is a mesh network router. Both the Linksys MR9600 version 1.0.4.205530 and the Linksys MX4200 version 1.0.13.210200 have security vulnerabilities...

9.8CVSS5.9AI score0.0032EPSS
Exploits0References2
Rows per page
Query Builder