Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary rating from Vendor (mitre) · only source for this CVE.
CVSS VectorVendor: mitre
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
5DescriptionCVE.org
Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1.0.0 is vulnerable to Denial of Service via the boa web server URI handler. By initiating a high-volume flood of HTTP GET requests to non-existent URIs, an attacker can exhaust critical system resources, including file descriptors and memory buffers. This results in a kernel deadlock or system hang that disables the web management portal and all routing capabilities.
AnalysisAI
Remote attackers can crash Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router V1.0.0 and disable all routing functionality by flooding the boa web server with HTTP GET requests to non-existent URIs. The attack exhausts file descriptors and memory buffers, causing kernel deadlock that kills both the web management interface and core routing services. SSVC framework confirms proof-of-concept exploit exists and the attack is fully automatable against default router configurations with no authentication required (CVSS AV:N/AC:L/PR:N/UI:N).
Technical ContextAI
The vulnerability resides in the boa web server, a lightweight HTTP daemon commonly embedded in consumer networking devices. Boa's URI handler in this firmware version (V1.0.0) lacks proper resource limits when processing requests to non-existent paths. The CWE-400 (Uncontrolled Resource Consumption) flaw allows unbounded allocation of file descriptors and memory buffers during error handling for 404 responses. Because boa runs with kernel-level privileges in typical embedded router architectures, resource exhaustion cascades into kernel space, triggering a deadlock condition rather than graceful degradation. The CPE string is generic (cpe:2.3:a:n/a:n/a), indicating limited vendor participation in NVD cataloging, but the specific affected product is the Dbit N300 T1 Pro wireless router running firmware V1.0.0.
RemediationAI
No vendor-released firmware patch has been identified at the time of analysis. Users should implement immediate compensating controls: Disable external access to the web management interface (typically TCP port 80/443) via router firewall rules, restricting admin access to trusted internal IP ranges only. Configure upstream network firewall or ISP router to block inbound HTTP/HTTPS traffic to the Dbit router's WAN interface. Deploy rate-limiting rules on upstream network devices to throttle HTTP request volumes to the router's management IP (note: this may impact legitimate admin access during high-traffic periods). For critical deployments, replace the affected router with alternative hardware from vendors with active security support programs. Monitor the vendor security page at http://dbit.com and the GitHub disclosure repository at https://github.com/kirubel-cve/CVE-2026-36957 for potential firmware updates. As a last resort, schedule periodic router reboots during maintenance windows to clear resource exhaustion states, though this does not prevent exploitation and creates additional availability gaps.
Remote code execution in APScheduler (all versions through 3.10.x and 4.0.0a5) is achievable when applications deseriali
Unauthenticated remote OS command injection in MeiG Smart FORGE_SLT711 cellular gateway firmware MDM9607.LE.1.0-00110-ST
Unauthenticated API access in LalanaChami Pharmacy Management System (commit 5c3d028) allows remote attackers to dump al
In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write o
Giflib 5.2.2 contains a buffer overflow in the EGifGCBToExtension function that fails to validate allocated memory when
Denial of service in GPAC's MP4Box multimedia tool (versions before 26.02.0) arises from a use-after-free in the gf_sei_
Arbitrary kernel memory read/write in Realtek rtl819x Jungle SDK Wi-Fi driver allows local unprivileged attackers to acc
Denial of service in GPAC's MP4Box/libgpac media importer (versions before 26.02.0) lets an attacker crash the tool by s
An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a Denial of S
Denial of service in relibc (the Redox OS C standard library) at commit 61f42d allows attackers to crash a process by ge
An issue in the pthread_rwlockattr_setpshared() function of relibc commit 61f42d allows attackers to cause a Denial of S
Denial of service in relibc (the Redox OS C standard library implementation, commit 61f42d) lets attackers crash a proce
Same weakness CWE-400 – Uncontrolled Resource Consumption
View allSame technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-26378