CVE-2026-36605

MEDIUM NVD

CVSS Score 6.5

Severity MEDIUM

Published Jun 03, 2026

Vendor unknown

Description

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 is vulnerable to a HTTP denial of service via a low number of crafted incomplete HTTP requests, causing a persistent crash that requires physical power cycling to recover.

References

https://github.com/Tymbark7372/MERCUSYS-AC12G/blob/master/advisories/CVE-2026-36605.md