← voltar
CVE-2026-1410

Beetel 777VR1 UART missing authentication

CVSS 5.4 MEDIUMEPSS 0.3%CWE-287CWE-306
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 5.4EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
26 jan 2026Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A vulnerability was detected in Beetel 777VR1 up to 01.00.09/01.00.09_55. Impacted is an unknown function of the component UART Interface. The manipulation results in missing authentication. An attack on the physical device is feasible. This attack is characterized by high complexity. The exploitability is considered difficult. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P
Produtos afetados
Beetel · 777VR1

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://gist.github.com/raghav20232023/96a6b13ab00c493d21362e744627ea9fhttps://vuldb.com/?ctiid.342799https://vuldb.com/?id.342799https://vuldb.com/?submit.739433