Description
U-SPEED N300 router V1.0.0 does not implement rate limiting or account lockout protections on the /api/login endpoint. This allows an attacker on the local network to perform unlimited authentication attempts, enabling brute-force attacks against the administrator account and potential unauthorized access to the router management interface.
Published: 2026-04-30
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The U‑SPEED N300 router (firmware v1.0.0) does not enforce rate limiting or lockout mechanisms on its /api/login endpoint. An attacker who can reach the local network can send unlimited authentication attempts, enabling brute‑force attacks against the administrator account and potentially gaining unauthorized access to the router’s management interface.

Affected Systems

U‑SPEED N300 router, firmware version 1.0.0.

Risk and Exploitability

This flaw allows a local attacker to perform unlimited login attempts, raising the likelihood of a successful brute‑force attack. The CVSS score of 7.5 indicates a high severity, and with no public exploit reference and an unavailable EPSS score, the exact exploitation probability remains unknown. The vulnerability could lead to full administrative control of the device. Because the router is not listed in CISA’s KEV catalog, no documented current exploitation is known, but the risk remains high for devices on an unsecured local network.

Generated by OpenCVE AI on May 2, 2026 at 00:30 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware update that includes a login rate‑limiting fix once it is released.
  • Disable or rename the default administrator account and enforce a strong, unique password.
  • Restrict access to the /api/login interface by configuring the router’s firewall or VLAN settings to accept connections only from trusted IP ranges, thereby limiting local network exposure.

Generated by OpenCVE AI on May 2, 2026 at 00:30 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 05 May 2026 03:15:00 +0000

Type Values Removed Values Added
First Time appeared U-speed n300
U-speed n300 Firmware
CPEs cpe:2.3:h:u-speed:n300:-:*:*:*:*:*:*:*
cpe:2.3:o:u-speed:n300_firmware:1.0.0:*:*:*:*:*:*:*
Vendors & Products U-speed n300
U-speed n300 Firmware

Sat, 02 May 2026 01:00:00 +0000

Type Values Removed Values Added
Title Unrestricted Brute‑Force Login on U‑SPEED N300 Router

Fri, 01 May 2026 08:45:00 +0000

Type Values Removed Values Added
First Time appeared U-speed
U-speed n300 Router
Vendors & Products U-speed
U-speed n300 Router

Thu, 30 Apr 2026 16:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-307
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 30 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description U-SPEED N300 router V1.0.0 does not implement rate limiting or account lockout protections on the /api/login endpoint. This allows an attacker on the local network to perform unlimited authentication attempts, enabling brute-force attacks against the administrator account and potential unauthorized access to the router management interface.
References

Subscriptions

U-speed N300 N300 Firmware N300 Router
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-04-30T15:49:59.809Z

Reserved: 2026-04-06T00:00:00.000Z

Link: CVE-2026-36959

cve-icon Vulnrichment

Updated: 2026-04-30T15:47:36.210Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-30T15:16:23.077

Modified: 2026-05-05T03:00:23.803

Link: CVE-2026-36959

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-02T00:45:30Z

Weaknesses