CVE-2025-7072
BaseFortify
Publication date: 2026-01-09
Last updated on: 2026-01-09
Assigner: CERT.PL
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| kaon | cg3000t | to 1.00.27 (exc) |
| kaon | cg3000tc | to 1.00.67 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-798 | The product contains hard-coded credentials, such as a password or cryptographic key. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the firmware of KAON CG3000T and CG3000TC routers, where hard-coded authentication credentials are stored in clear text and are the same across all devices of these models. An unauthenticated remote attacker can use these credentials to execute commands with root privileges on the affected routers. [1]
How can this vulnerability impact me? :
If your KAON CG3000T or CG3000TC router is running vulnerable firmware versions, an attacker could remotely gain root access to your device without authentication. This could lead to full control over the router, allowing the attacker to manipulate network traffic, compromise connected devices, or disrupt your network services. [1]
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, you should update the firmware of your KAON CG3000T routers to version 1.00.27 or later, and the CG3000TC routers to version 1.00.67 or later. These firmware versions contain fixes that remove the hard-coded credentials vulnerability. [1]