CVE-2026-36605

Mercusys AC12G (EU) V1 router with firmware AC12G(EU) V1 200909 is vulnerable to a HTTP denial of service via a low number of crafted incomplete HTTP requests, causing a persistent crash that requires physical power cycling to recover.