CVE-2025-57428
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-29

Last updated on: 2025-10-28

Assigner: MITRE

Description
Default credentials in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to gain access to the debug shell exposed via Telnet on Port 23 and execute hardware-level flash and register manipulation commands.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-29
Last Modified
2025-10-28
Generated
2026-06-16
AI Q&A
2025-09-29
EPSS Evaluated
2026-06-15
NVD
CVE-2025-57428
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
each_italy wiredless_mini_router v28k.minirouter.20190211
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-284 The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Italy Wireless Mini Router WIRELESS-N 300M (firmware v28K.MiniRouter.20190211) because it has a Telnet debug interface enabled by default on port 23 that uses default admin credentials ('admin'/'admin'). Attackers can log in to this Telnet shell and access low-level commands that allow direct manipulation of the device's flash memory and registers. This includes reading, writing, and erasing flash memory and modifying device registers, which can lead to firmware corruption or device bricking. [1]

Impact Analysis

An attacker exploiting this vulnerability can gain unauthorized access to the router's debug shell and execute commands that manipulate the device's hardware at a low level. This can result in arbitrary firmware corruption, rendering the device inoperable (bricking), loss of security controls, and potentially complete loss of device functionality. Such control could also be used to compromise network security or disrupt network operations. [1]

Detection Guidance

You can detect this vulnerability by scanning your network for devices with port 23 (Telnet) open and attempting to log in using the default credentials 'admin' for both username and password. For example, use a command like 'nmap -p 23 --open <target-ip>' to find devices with Telnet enabled. Then, try to connect via Telnet using 'telnet <target-ip> 23' and attempt to authenticate with the default credentials. If successful, you can check for the presence of the debug shell commands such as 'spi' and 'reg' to confirm the vulnerability. [1]

Mitigation Strategies

Immediate mitigation steps include changing the default admin password via the device's web interface, which also updates the Telnet credentials, thereby preventing unauthorized access. If possible, disable the Telnet service on port 23 to eliminate the attack surface. Since vendor support is unavailable, consider isolating the device from untrusted networks or replacing it with a more secure alternative. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-57428. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart