UTT HiPER 810 / nv810v4 router firmware v1.5.0-140603 was discovered to contain insecure default credentials for the telnet service, possibly allowing a remote attacker to gain root access via a crafted script.
The UTT HiPER 810 / nv810v4 router firmware version v1.5.0-140603 contains built-in, default login credentials (CWE-1188 — insecure default initialization) for the telnet service. An attacker can remotely, without any privileges, connect to the device via telnet and use these default credentials. Subsequently, using a properly crafted script, it is possible to gain root-level access to the device's operating system.
An attacker can gain full administrative (root) access to the router, enabling device takeover, network traffic eavesdropping, modification of network configuration, and potential use of the device as a launching point for further attacks on the internal network.
Apply patches available from the manufacturer according to the references. Until the update is applied, it is recommended to disable the telnet service on the device, restrict access to management interfaces only to trusted IP addresses, and change the default credentials if the firmware allows.
UTT HiPER 810 / nv810v4 router with firmware version v1.5.0-140603
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HUtt 810
HWUtt4.0Utt 810 Firmware
OSUtt1.5.0-140603
Related vulnerabilities
A vulnerability was determined in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub_4407D4 ...
A vulnerability has been found in UTT HiPER 810 1.7.4-141218. This issue affects the function setSysAdm of the...
A flaw has been found in UTT HiPER 810 1.7.4-141218. The impacted element is the function strcpy of the file /...
W systemie UTT HiPER 810 w wersji 1.7.4-141218 wykryto podatność. Podatny element to funkcja sub_43F020 w plik...
RCE w UTT HiPER 520W — wykonanie dowolnych poleceń przez /goform/formDia