CVE-2026-36957: n/a
Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1.0.0 is vulnerable to Denial of Service via the boa web server URI handler. By initiating a high-volume flood of HTTP GET requests to non-existent URIs, an attacker can exhaust critical system resources, including file descriptors and memory buffers. This results in a kernel deadlock or system hang that disables the web management portal and all routing capabilities.
AI Analysis
Technical Summary
CVE-2026-36957 describes a Denial of Service vulnerability in the boa web server URI handler of the Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1.0.0. The vulnerability is triggered by flooding the router with HTTP GET requests targeting non-existent URIs, which exhausts critical system resources including file descriptors and memory buffers. This exhaustion causes a kernel deadlock or system hang, resulting in the unavailability of the router's web management portal and its routing capabilities. No CVSS score or remediation information is provided, and no known exploits have been reported.
Potential Impact
Successful exploitation results in a denial of service condition that disables the router's web management portal and all routing functions, effectively rendering the device inoperable until reboot or manual intervention. This can disrupt network connectivity and management.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, network administrators should consider limiting access to the router's management interface from untrusted networks and monitor for unusual HTTP request patterns targeting non-existent URIs to reduce risk.
CVE-2026-36957: n/a
Description
Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1.0.0 is vulnerable to Denial of Service via the boa web server URI handler. By initiating a high-volume flood of HTTP GET requests to non-existent URIs, an attacker can exhaust critical system resources, including file descriptors and memory buffers. This results in a kernel deadlock or system hang that disables the web management portal and all routing capabilities.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-36957 describes a Denial of Service vulnerability in the boa web server URI handler of the Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1.0.0. The vulnerability is triggered by flooding the router with HTTP GET requests targeting non-existent URIs, which exhausts critical system resources including file descriptors and memory buffers. This exhaustion causes a kernel deadlock or system hang, resulting in the unavailability of the router's web management portal and its routing capabilities. No CVSS score or remediation information is provided, and no known exploits have been reported.
Potential Impact
Successful exploitation results in a denial of service condition that disables the router's web management portal and all routing functions, effectively rendering the device inoperable until reboot or manual intervention. This can disrupt network connectivity and management.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, network administrators should consider limiting access to the router's management interface from untrusted networks and monitor for unusual HTTP request patterns targeting non-existent URIs to reduce risk.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- mitre
- Date Reserved
- 2026-04-06T00:00:00.000Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69f37003cbff5d86102de4e7
Added to database: 4/30/2026, 3:06:43 PM
Last enriched: 4/30/2026, 3:21:38 PM
Last updated: 4/30/2026, 4:22:31 PM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.