Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.5
Router lets in unauthorized connections from the internet
CVE-2026-27850
Summary
A misconfigured firewall setting on certain routers may allow hackers to access services that should only be accessible from within the local network. This affects MR9600 and MX4200 routers, and users should update their firmware to fix the issue.
Original title
Due to an improperly configured firewall rule, the router will accept any connection on the WAN port with the source port 5222, exposing all services which are normally only accessible through the ...
Original description
Due to an improperly configured firewall rule, the router will accept any connection on the WAN port with the source port 5222, exposing all services which are normally only accessible through the local network.
This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200.
This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200.
nvd CVSS3.1
7.5
Published: 25 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026