Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
Credentials can be injected into database via TLS-SRP handshake
CVE-2026-27847
Summary
This issue affects certain firmware versions of MR9600 and MX4200 devices. An attacker can use a specially crafted handshake to inject known credentials into the database, allowing them to access the protected service. To fix this issue, update to the latest firmware version.
Original title
Due to improper neutralization of special elements, SQL statements can be injected via the handshake of a TLS-SRP connection. This can be used to inject known credentials into the database that can...
Original description
Due to improper neutralization of special elements, SQL statements can be injected via the handshake of a TLS-SRP connection. This can be used to inject known credentials into the database that can be utilized to successfully complete the handshake and use the protected service.
This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200.
This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200.
nvd CVSS3.1
9.8
Vulnerability type
CWE-89
SQL Injection
Published: 25 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026