U-speed N300_firmware
2 CVEs affecting U-speed N300_firmware. Latest disclosed: 2026-04-30. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-36959 | High | 7.5 | 2026-04-30 | U-SPEED N300 router V1.0.0 does not implement rate limiting or account lockout protections on the /api/login endpoint. This allows an attacker on the local net… |
CVE-2026-36958 | High | 7.5 | 2026-04-30 | A denial-of-service vulnerability exists in the U-SPEED N300 V1.0.0 wireless router. By sending a large number of concurrent HTTP requests to random or non-exi… |