CVE-2025-65289

Name of the Vulnerable Software and Affected Versions Mercury MR816v2 version 4.8.7 Build 110427 Rel 36550n

Description A stored Cross Site Scripting (XSS) flaw exists in the Mercury MR816v2 router. A remote attacker on the Local Area Network (LAN) can inject JavaScript into the router’s management User Interface (UI) by providing a malicious hostname. The injected script is saved and then executed when an administrator accesses the interface, such as after a DHCP release and renew. The management interface employs weak authentication and does not adequately protect session data, allowing an attacker to potentially steal the administrator’s session and carry out administrative tasks. The attack vector involves submitting a malicious hostname.

Recommendations For Mercury MR816v2 version 4.8.7 Build 110427 Rel 36550n, update to a newer version that contains a fix for this vulnerability.