CVE-2026-1407
BaseFortify
Publication date: 2026-01-25
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| beetel | 777vr1_firmware | to 01.00.09_55 (inc) |
| beetel | 777vr1 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
| CWE-200 | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a security flaw in the Beetel 777VR1 device, specifically in its UART Interface component. It allows an attacker with physical access to the device to perform a manipulation that leads to information disclosure. The attack is complex and difficult to exploit, but the exploit code has been made publicly available.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized disclosure of information from the affected device if an attacker has physical access and can perform the required manipulation. Although the attack is difficult to execute, the public availability of the exploit increases the risk of exploitation.