CVE-2026-2702
Awaiting Analysis Awaiting Analysis - Queue

Hardcoded Credentials in Beetel 777VR1 WPA2 PSK Component

Vulnerability report for CVE-2026-2702, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-02-19

Last updated on: 2026-04-29

Assigner: VulDB

Description

A security flaw has been discovered in Beetel 777VR1 up to 01.00.09. This issue affects some unknown processing of the component WPA2 PSK. Performing a manipulation results in hard-coded credentials. The attacker must have access to the local network to execute the attack. The complexity of an attack is rather high. The exploitability is assessed as difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-02-19
Last Modified
2026-04-29
Generated
2026-07-06
AI Q&A
2026-02-19
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
beetel 777vr1 to 01.00.09 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-259 The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.
CWE-798 The product contains hard-coded credentials, such as a password or cryptographic key.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a security flaw found in the Beetel 777VR1 device up to version 01.00.09. It involves an issue with the WPA2 PSK component where certain unknown processing leads to the use of hard-coded credentials. To exploit this vulnerability, an attacker must have access to the local network. The attack is considered difficult to perform, but the exploit code has been made publicly available.

Impact Analysis

If exploited, this vulnerability could allow an attacker with local network access to use hard-coded credentials to potentially gain unauthorized access to the affected device. However, the attack complexity is high and exploitability is difficult, which may limit the likelihood of successful attacks.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-2702. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart