PT-2026-56925 · Mercusys · Mw302R
Published
2026-07-09
·
Updated
2026-07-10
·
CVE-2026-31267
CVSS v3.1
5.7
Medium
| Vector | AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Mercusys MW302R version MW302R(EU) V1 1.4.10 Build 231023
Description
A stack buffer overflow exists in the administrative web interface. This issue allows an authenticated attacker with administrative privileges to cause a system crash and a subsequent denial of service by sending a specially crafted request, which enables control flow manipulation to an arbitrary instruction address. A stack buffer overflow occurs when a program writes more data to a buffer located on the stack than the buffer is allocated to hold.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mw302R