CVE-2026-27850 | THREATINT

Description

Due to an improperly configured firewall rule, the router will accept any connection on the WAN port with the source port 5222, exposing all services which are normally only accessible through the local network. This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200.

PUBLISHED Reserved 2026-02-24 | Published 2026-02-25 | Updated 2026-02-25 | Assigner ENISA

Problem types

cwe-940 Improper Verification of Source of a Communication Channel

Product status

Default status

affected

1.0.4.205530

affected

Default status

unaffected

1.0.13.210200

affected

References

www.syss.de/...te/Publikationen/Advisories/SYSS-2025-014.txt third-party-advisory technical-description

cve.org (CVE-2026-27850)

nvd.nist.gov (CVE-2026-27850)

Download JSON