A vulnerability was found in Mercusys AC12G . It has been declared as very critical . This vulnerability affects unknown code of the component SOAP Request Handler . Executing a manipulation can lead to unintended intermediary. This vulnerability is handled as CVE-2026-36608 . The attack can only be done within the local network. There is not any exploit available.