Skip to main content

Beetel 777VR1 CVE-2026-2616

HIGH
Use of Hard-coded Password (CWE-259)
2026-02-17 cna@vuldb.com
7.4
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
7.4 HIGH
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

6
Analysis Updated
Apr 29, 2026 - 01:38 vuln.today
v2 (cvss_changed)
Re-analysis Queued
Apr 29, 2026 - 01:11 vuln.today
cvss_changed
CVSS changed
Apr 29, 2026 - 01:11 NVD
8.8 (HIGH) 7.4 (HIGH)
Analysis Generated
Mar 12, 2026 - 21:55 vuln.today
PoC Detected
Feb 19, 2026 - 19:56 vuln.today
Public exploit code
CVE Published
Feb 17, 2026 - 15:16 nvd
HIGH 8.8

DescriptionCVE.org

A vulnerability has been found in Beetel 777VR1 up to 01.00.09. The impacted element is an unknown function of the component Web Management Interface. The manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. It is advisable to modify the configuration settings. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Hard-coded credentials in the Beetel 777VR1 router's web management interface allow adjacent network attackers to gain full administrative access without authentication. Affecting firmware versions up to and including 01.00.09, this vulnerability enables complete device compromise through documented default credentials that cannot be changed through normal configuration. Publicly available exploit code exists with detailed reproduction steps, and the vendor has not responded to disclosure attempts. EPSS score of 0.19% (40th percentile) suggests limited widespread exploitation despite public POC availability, likely due to the device's limited deployment footprint and adjacent network attack requirement.

Technical ContextAI

This vulnerability affects the Beetel 777VR1 wireless router (CPE: cpe:2.3:o:beetel:777vr1_firmware), specifically its web-based management interface accessible over the local network. The issue stems from CWE-259 (Use of Hard-coded Credentials), where authentication credentials are embedded in the firmware or device configuration and cannot be modified by administrators. Hard-coded credentials represent a fundamental design flaw common in embedded networking devices where manufacturers include default administrative accounts for support or manufacturing purposes but fail to enforce credential changes during initial setup. The web management interface, typically running on HTTP/HTTPS ports 80/443 or non-standard ports, accepts these unchangeable credentials for full administrative access, bypassing intended authentication controls.

RemediationAI

No vendor-released patch identified at time of analysis - the manufacturer did not respond to early disclosure attempts per the CVE description. Organizations must implement compensating controls: (1) Replace affected Beetel 777VR1 routers with alternative devices from vendors with active security support programs, which eliminates the vulnerability but requires hardware investment and network reconfiguration. (2) If replacement is not immediately feasible, disable the web management interface entirely if the device supports this configuration, though this prevents remote administration and may require console access for configuration changes. (3) Implement network segmentation to isolate affected routers on separate VLANs with strict access control lists permitting management access only from dedicated administrator workstations, which adds network complexity but contains the attack surface. (4) Deploy network access control (NAC) solutions to prevent unauthorized devices from joining network segments where vulnerable routers are accessible, though this does not prevent exploitation by already-authenticated users. (5) Monitor network traffic for connections to the router's management interface from unexpected source IPs, though determined attackers can evade logging. Given the absence of official fixes and the fundamental nature of hard-coded credentials, device replacement represents the only complete remediation strategy.

Share

CVE-2026-2616 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy