Christian Zä​Ske

Pesquisador deSySS GmbH
#9073de 53,639
30.1CVSS total
Vulnerabilidades · 4
Média
2
Alta
1
Crítica
1
PT-2026-21925
6.2
2026-02-25
Linksys · Linksys Mr9600 · CVE-2026-27846
**Name of the Vulnerable Software and Affected Versions** Linksys MR9600 version 1.0.4.205530 Linksys MX4200 version 1.0.13.210200 **Description** A lack of proper authentication allows a user with physical access to the device to misuse the mesh functionality. This can lead to gaining access to sensitive information, including the administrator password for the web interface and Wi-Fi passwords. **Recommendations** Update Linksys MR9600 to a version newer than 1.0.4.205530. Update Linksys MX4200 to a version newer than 1.0.13.210200.
PT-2026-21927
9.8
2026-02-25
Mr9600 · Mr9600 · CVE-2026-27848
**Name of the Vulnerable Software and Affected Versions** MR9600 versions 1.0.4.205530 MX4200 version 1.0.13.210200 **Description** A flaw exists due to missing neutralization of special elements, allowing for OS command injection via the TLS-SRP connection handshake. Successful exploitation results in commands being executed as the root user. **Recommendations** Update MR9600 to a version later than 1.0.4.205530. Update MX4200 to a version later than 1.0.13.210200.
PT-2026-21968
7.5
2026-02-25
Mr9600 · Mr9600 · CVE-2026-27850
**Name of the Vulnerable Software and Affected Versions** MR9600 versions 1.0.4.205530 MX4200 versions 1.0.13.210200 **Description** An improperly configured firewall rule allows connections on the WAN port using source port 5222. This exposes services normally accessible only through the local network. **Recommendations** Update MR9600 to a version newer than 1.0.4.205530. Update MX4200 to a version newer than 1.0.13.210200.
PT-2026-21778
6.6
2026-02-24
Linksys · Linksys Mr9600 · CVE-2026-25603
**Name of the Vulnerable Software and Affected Versions** Linksys MR9600 version 1.0.4.205530 Linksys MX4200 version 1.0.13.210200 **Description** A path traversal issue exists in Linksys MR9600 and MX4200 devices. This allows the contents of a USB drive partition to be mounted in an arbitrary location within the file system. Successful exploitation may lead to the execution of shell scripts with root privileges. **Recommendations** Linksys MR9600 version 1.0.4.205530: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Linksys MX4200 version 1.0.13.210200: At the moment, there is no information about a newer version that contains a fix for this vulnerability.