EIP-2026-101378

PRE-CVE

Netgear FM114P ProSafe Wireless Router - UPnP Information Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101378. PoCs published by stickler.

AI-analyzed exploit summary This exploit demonstrates an information disclosure vulnerability in the Netgear FM114P ProSafe Wireless Router. By sending a crafted UPnP SOAP request to the WANPPPConnection service, an attacker can retrieve the username and password for the WAN interface if Remote Access and Universal Plug and Play are enabled.

Description

Netgear FM114P ProSafe Wireless Router - UPnP Information Disclosure

Exploits (1)

exploitdb WORKING POC VERIFIED

by stickler · textremotehardware

https://www.exploit-db.com/exploits/22453

View Code ZIP pw:eip

This exploit demonstrates an information disclosure vulnerability in the Netgear FM114P ProSafe Wireless Router. By sending a crafted UPnP SOAP request to the WANPPPConnection service, an attacker can retrieve the username and password for the WAN interface if Remote Access and Universal Plug and Play are enabled.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Netgear FM114P ProSafe Wireless Router

No auth needed

Prerequisites: Remote Access enabled on WAN interface · Universal Plug and Play enabled on WAN interface

MITRE ATT&CK

T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026