Beetel 777VR1 CVE-2026-2616
HIGHSeverity by source
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
6DescriptionCVE.org
A vulnerability has been found in Beetel 777VR1 up to 01.00.09. The impacted element is an unknown function of the component Web Management Interface. The manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. It is advisable to modify the configuration settings. The vendor was contacted early about this disclosure but did not respond in any way.
AnalysisAI
Hard-coded credentials in the Beetel 777VR1 router's web management interface allow adjacent network attackers to gain full administrative access without authentication. Affecting firmware versions up to and including 01.00.09, this vulnerability enables complete device compromise through documented default credentials that cannot be changed through normal configuration. Publicly available exploit code exists with detailed reproduction steps, and the vendor has not responded to disclosure attempts. EPSS score of 0.19% (40th percentile) suggests limited widespread exploitation despite public POC availability, likely due to the device's limited deployment footprint and adjacent network attack requirement.
Technical ContextAI
This vulnerability affects the Beetel 777VR1 wireless router (CPE: cpe:2.3:o:beetel:777vr1_firmware), specifically its web-based management interface accessible over the local network. The issue stems from CWE-259 (Use of Hard-coded Credentials), where authentication credentials are embedded in the firmware or device configuration and cannot be modified by administrators. Hard-coded credentials represent a fundamental design flaw common in embedded networking devices where manufacturers include default administrative accounts for support or manufacturing purposes but fail to enforce credential changes during initial setup. The web management interface, typically running on HTTP/HTTPS ports 80/443 or non-standard ports, accepts these unchangeable credentials for full administrative access, bypassing intended authentication controls.
RemediationAI
No vendor-released patch identified at time of analysis - the manufacturer did not respond to early disclosure attempts per the CVE description. Organizations must implement compensating controls: (1) Replace affected Beetel 777VR1 routers with alternative devices from vendors with active security support programs, which eliminates the vulnerability but requires hardware investment and network reconfiguration. (2) If replacement is not immediately feasible, disable the web management interface entirely if the device supports this configuration, though this prevents remote administration and may require console access for configuration changes. (3) Implement network segmentation to isolate affected routers on separate VLANs with strict access control lists permitting management access only from dedicated administrator workstations, which adds network complexity but contains the attack surface. (4) Deploy network access control (NAC) solutions to prevent unauthorized devices from joining network segments where vulnerable routers are accessible, though this does not prevent exploitation by already-authenticated users. (5) Monitor network traffic for connections to the router's management interface from unexpected source IPs, though determined attackers can evade logging. Given the absence of official fixes and the fundamental nature of hard-coded credentials, device replacement represents the only complete remediation strategy.
More in 777vr1 Firmware
View allCross Site Scripting (XSS) vulnerability in Beetel router 777VR1 can be exploited via the NTP server name in System Time
Missing authentication in the Beetel 777VR1 firmware (versions up to 01.00.09) UART interface allows an attacker with ph
Improper access controls in the UART interface of Beetel 777VR1 firmware (up to version 01.00.09) allow attackers with p
A vulnerability was determined in Beetel 777VR1 up to 01.00.09. This impacts an unknown function of the component SSH Se
The Beetel 777VR1 router's SSH/Telnet service contains insecure default initialization that allows local network attacke
A security vulnerability has been detected in Beetel 777VR1 up to 01.00.09/01.00.09_55. This issue affects some unknown
A security flaw has been discovered in Beetel 777VR1 up to 01.00.09/01.00.09_55. This affects an unknown part of the com
Same weakness CWE-259 – Use of Hard-coded Password
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today