Critical-risk tools in ASUS Merlin Router MCP Server

Critical severity ASUS Merlin Router MCP Server MCP Server 6 of 47 tools

6 of the 47 tools in ASUS Merlin Router MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

remove_dhcp_reservation Destructive

Remove DHCP reservation by MAC or IP address
remove_keyword_filter Destructive

Remove keyword from filter list
remove_mac_filter Destructive

Remove device from MAC filter
remove_network_service_filter_rule Destructive

Remove network service filter rule by matching all criteria exactly
remove_url_filter Destructive

Remove URL pattern from global filter list
remove_vpn_routing_policy Destructive

Remove device from VPN Director routing (Asuswrt-Merlin firmware only). Device will return to normal routing (no VPN). Requires Merlin firmware - stock ASUS firmware not supported.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in ASUS Merlin Router MCP Server

Tools at critical risk

Attacks that target this class

More on ASUS Merlin Router MCP Server

Enforce policy on every ASUS Merlin Router MCP Server tool call.