{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-27846", "assignerOrgId": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158", "state": "PUBLISHED", "assignerShortName": "ENISA", "dateReserved": "2026-02-24T07:07:48.973Z", "datePublished": "2026-02-25T15:03:58.616Z", "dateUpdated": "2026-02-25T18:36:03.925Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "MR9600", "vendor": "Linksys", "versions": [{"status": "affected", "version": "1.0.4.205530"}]}, {"defaultStatus": "unaffected", "product": "MX4200", "vendor": "Linksys", "versions": [{"status": "affected", "version": "1.0.13.210200"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Due to missing authentication, a user with physical access to the device can misuse the mesh functionality for adding a new mesh device to the network&nbsp;<br>to gain access to sensitive information, including the password for admin access to the web interface and the Wi-Fi passwords.<p>This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200.</p>"}], "value": "Due to missing authentication, a user with physical access to the device can misuse the mesh functionality for adding a new mesh device to the network\u00a0\nto gain access to sensitive information, including the password for admin access to the web interface and the Wi-Fi passwords.This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200."}], "impacts": [{"capecId": "CAPEC-37", "descriptions": [{"lang": "en", "value": "CAPEC-37 Retrieve Embedded Sensitive Data"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-306", "description": "CWE-306 Missing Authentication for Critical Function", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158", "shortName": "ENISA", "dateUpdated": "2026-02-25T15:03:58.616Z"}, "references": [{"tags": ["third-party-advisory", "technical-description"], "url": "https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2025-002.txt"}], "source": {"discovery": "UNKNOWN"}, "title": "Missing authentication in Linksys MR9600, Linksys MX4200", "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-02-25T18:35:57.582373Z", "id": "CVE-2026-27846", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-25T18:36:03.925Z"}}]}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Due to missing authentication, a user with physical access to the device can misuse the mesh functionality for adding a new mesh device to the network\u00a0\nto gain access to sensitive information, including the password for admin access to the web interface and the Wi-Fi passwords.This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200."}, {"lang": "es", "value": "Debido a la falta de autenticaci\u00f3n, un usuario con acceso f\u00edsico al dispositivo puede hacer un uso indebido de la funcionalidad de malla para a\u00f1adir un nuevo dispositivo de malla a la red para obtener acceso a informaci\u00f3n sensible, incluyendo la contrase\u00f1a para el acceso de administrador a la interfaz web y las contrase\u00f1as de Wi-Fi. Este problema afecta a MR9600: 1.0.4.205530; MX4200: 1.0.13.210200."}], "id": "CVE-2026-27846", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-02-25T16:23:28.710", "references": [{"source": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158", "url": "https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2025-002.txt"}], "sourceIdentifier": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "1.0.4.205530"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "MR9600", "source": "cna", "vendor": "Linksys"}, "product": "mr9600", "vendor": "linksys"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "1.0.13.210200"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "MX4200", "source": "cna", "vendor": "Linksys"}, "product": "mx4200", "vendor": "linksys"}], "analysis": {"en": {"generated_at": "2026-04-17T15:15:02.484370+00:00", "value": {"mitigation_remediation": ["Upgrade the router firmware to the latest version that fixes the missing authentication issue (check Linksys support for a newer release).", "Restrict physical access to the router and mesh devices, limiting it to trusted personnel.", "Disable mesh networking features or monitor for unauthorized mesh joins, and eject any devices that appear without proper authentication."], "summary": {"action": "Assess Impact", "impact": "Authentication Bypass \u2013 attacker can obtain admin and Wi\u2011Fi passwords from the router"}, "threat_synthesis": {"affected_systems": "Linksys MR9600 (firmware 1.0.4.205530) and Linksys MX4200 (firmware 1.0.13.210200).", "description_and_impact": "The vulnerability is an authentication bypass that allows a user with physical access to the Linksys device to use the mesh functionality to add a new mesh node. By doing so, the attacker can read sensitive information, notably the administrative login credentials for the web interface and the passwords for the Wi\u2011Fi network. This gives the attacker full administrative control over the router and network, potentially compromising all connected devices.\n\nAffected systems include the Linksys MR9600 running firmware 1.0.4.205530 and the Linksys MX4200 running firmware 1.0.13.210200. No other versions are listed as affected.\n\nThe risk is moderate, as reflected by a CVSS score of 6.2, but the exploitation probability is low (EPSS < 1%). The issue is not currently listed in the CISA KEV catalogue. The most likely attack vector requires physical proximity to the device; no remote or network\u2011only exploitation is described.", "risk_and_exploitability": "With a moderate CVSS score but very low EPSS, the overall exposure is limited, especially if physical security controls are in place. Compromise is feasible only when an attacker can physically reach the device; networking exposure is not evident from the description."}}}}, "created": "2026-02-26T13:15:59.000571+00:00", "updated": "2026-04-17T15:15:21.860061+00:00", "vendors": ["linksys", "linksys$PRODUCT$mr9600", "linksys$PRODUCT$mx4200"]}