CRITICAL🇵🇱 Wersja polska

CVE-2025-22938

CVSS 9.8v3.1pub. 2025-03-31upd. 2025-08-18

Adtran 411 ONT L80.00.0011.M2 was discovered to contain weak default passwords.

🤖 AI Analysis
How it works

The vulnerability consists of the manufacturer using weak default passwords in the device firmware (CWE-1393). An attacker can attempt to log into the device using known or easily guessable default credentials that are common across all units of the given model. The attack requires no authentication, user interaction, or special privileges, and can be conducted remotely over the network.

Impact

A successful attack could allow an attacker to gain full control of the device, risking disclosure of confidential configuration data, modification of network settings, and disruption of services provided by the ISP operator.

Mitigation & patch

Default passwords must be immediately changed to strong, unique credentials on all Adtran 411 ONT devices. Patches available from the manufacturer should be applied according to references, and network access to device management interfaces should be considered for restriction.

Who is affected

Adtran 411 ONT with firmware version L80.00.0011.M2

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Adtran 411

    HW
    Adtran
    wszystkie wersje
  • Adtran 411 Firmware

    OS
    Adtran
    l80.00.0011.m2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-22937CRITICAL9.8PL ✓ten sam produkt

Privilege escalation w Adtran 411 ONT — krytyczna podatność LPE

CVE-2025-22939CRITICAL9.8PL ✓ten sam produkt

Command injection w usłudze telnet urządzeń Adtran 411 ONT — eskalacja do root

CVE-2025-22940CRITICAL9.1PL ✓ten sam produkt

Nieprawidłowa kontrola dostępu w Adtran 411 ONT — nieautoryzowana zmiana hasła administratora

CVE-2025-22941CRITICAL9.8PL ✓ten sam produkt

Command injection w interfejsie webowym Adtran 411 ONT — eskalacja do root

CVE-2022-37661CRITICAL9.8ten sam vendor

SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution (RCE) via the ping hos...