CVE-2026-36608
8.8 HIGHMercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows UPnP AddPortMapping to forward external ports to the router's own ...
Published: 2026-06-03 · Last updated: 2026-06-04
Severity and scoring
- CVSS
- 8.8 HIGH
- Vector
- CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-441
Description
Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows UPnP AddPortMapping to forward external ports to the router's own admin interface by accepting its own IP (192.168.1.1) or localhost (127.0.0.1) as InternalClient. An unauthenticated LAN attacker can expose the admin panel to the internet with a single SOAP request.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-49821 — Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes (7.7 HIGH)
- CVE-2026-0098 — In getCallingPackageName of Shared.java, there is a possible way to bypass activity start restrictions due to a confused deputy (7.8 HIGH)
- CVE-2025-48570 — In multiple functions of PipTaskOrganizer.java, there is a possible way to launch an activity from the background due to a confused deputy (7.8 HIGH)
- CVE-2026-48522 — PyJWT is a JSON Web Token implementation in Python (4.2 MEDIUM)
- CVE-2025-62718 — Axios is a promise based HTTP client for the browser and Node.js (9.9 CRITICAL)