Posted by cve on Oct 18
The critical vulnerabilities discovered within Mercku routers,
specifically the M6a model, that could pose serious security threats to
home networks. These issues allow remote code execution with minimal
effort, tested against version 2.1.0 of the official firmware.
I have also submitted a CVE request in June 2024 (CVE Request 1744791)
CSRF Vulnerability: Attackers can force a password reset without
the user’s consent,…
– Read More – Full Disclosure
