CVE-2026-36607
8.8 HIGHMercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows unauthenticated brute-force attacks via the TDDP password change e...
Published: 2026-06-03 · Last updated: 2026-06-04
Severity and scoring
- CVSS
- 8.8 HIGH
- Vector
- CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-307
Description
Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows unauthenticated brute-force attacks via the TDDP password change endpoint (code=10), which lacks the rate limiting applied to the login endpoint (code=7). An attacker on the adjacent network can attempt unlimited passwords without triggering account lockout.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-43926 — FOSSBilling is a free, open-source billing and client management system
- CVE-2026-36612 — Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 enables WPS 2.0 by default with a weak lockout policy (60-second lockout after 1... (6.4 MEDIUM)
- CVE-2026-10216 — A vulnerability was detected in unitedbyai droidclaw up to 0.5.3 (3.7 LOW)
- CVE-2026-49324 — Uncontrolled resource consumption in the Wireless Control Module (WCM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year allow... (4.6 MEDIUM)
- CVE-2026-45364 — Better Auth is an authentication and authorization library for TypeScript (7.3 HIGH)