Known Vulnerabilities for products from Mercusys
Listed below are 6 of the newest known vulnerabilities associated with the vendor "Mercusys".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-26988 json | TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue... | 7.8 - HIGH | 2022-05-10 | 2022-05-16 |
| CVE-2022-26987 json | TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue... | 7.8 - HIGH | 2022-05-10 | 2022-05-16 |
| CVE-2021-25811 json | MERCUSYS Mercury X18G 1.0.5 devices allow Denial of service via a crafted value to the POST listen_http_lan parameter. Upon s... | 7.5 - HIGH | 2021-04-29 | 2021-05-08 |
| CVE-2021-25810 json | Cross site Scripting (XSS) vulnerability in MERCUSYS Mercury X18G 1.0.5 devices, via crafted values to the 'src_dport_start',... | 6.1 - MEDIUM | 2021-04-29 | 2021-05-05 |
| CVE-2021-23242 json | MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ to the UPnP server, as demonstrated by the /../../conf/... | 5.3 - MEDIUM | 2021-01-07 | 2021-01-12 |
| CVE-2021-23241 json | MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ in conjunction with a loginLess or login.htm URI (for a... | 5.3 - MEDIUM | 2021-01-07 | 2021-01-12 |