Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Mon, 13 Jul 2026 08:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Buffer Overflow in Mercusys MW302R Router Enables Denial of Service |
Sun, 12 Jul 2026 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Stack Buffer Overflow in Mercusys MW302R Administrative Interface Enables Denial of Service |
Sat, 11 Jul 2026 13:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Stack Buffer Overflow in Mercusys MW302R Administrative Interface Enables Denial of Service |
Fri, 10 Jul 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-121 | |
| Metrics |
cvssV3_1
|
Fri, 10 Jul 2026 10:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Mercusys
Mercusys mw302r |
|
| Vendors & Products |
Mercusys
Mercusys mw302r |
Thu, 09 Jul 2026 21:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Mercusys MW302R MW302R(EU)_V1_1.4.10 Build 231023 is vulnerable to Buffer Overflow in the administrative web interface. A stack buffer overflow vulnerability in the administrative web interface allows an authenticated attacker with administrative privileges to trigger a system crash by sending a specially crafted request. The vulnerability results in denial of service through control flow manipulation to an arbitrary instruction address. | |
| References |
|
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-07-10T15:31:02.333Z
Reserved: 2026-03-09T00:00:00.000Z
Link: CVE-2026-31267
Updated: 2026-07-10T15:30:54.388Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-13T08:00:13Z