CVE-2026-52199
Received Received - Intake

Remote Code Execution in Generic OEM UZ801_v2.1 4G LTE Router

Vulnerability report for CVE-2026-52199, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-17

Last updated on: 2026-07-17

Assigner: MITRE

Description

An issue in Generic OEM UZ801_v2.1 4G LTE Router V3.4.3 allows a remote attacker to execute arbitrary code via the sbin/adbd component

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-17
Last Modified
2026-07-17
Generated
2026-07-18
AI Q&A
2026-07-17
EPSS Evaluated
N/A
NVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
generic_oem uz801_v2.1 4.3.4
generic_oem uz801_v2.1 3.4.3

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-52199 is an Incorrect Access Control vulnerability in the Generic OEM UZ801_v2.1 4G LTE Router with Firmware V3.4.3. It allows a remote attacker on the same local network to exploit an exposed, unauthenticated Android Debug Bridge (ADB) daemon running on TCP port 7628. This flaw enables bypassing authentication and gaining root-level access to execute arbitrary code.

Detection Guidance

To detect this vulnerability, check if TCP port 7628 is open on your router. Use commands like 'nmap -p 7628 192.168.100.1' or 'nc -zv 192.168.100.1 7628'. If the port is open, the ADB daemon may be exposed and vulnerable.

Impact Analysis

This vulnerability can lead to severe impacts such as full system compromise, remote code execution, privilege escalation, information disclosure, and potential denial of service. An attacker can gain complete control over the router, access sensitive data, and disrupt network operations.

Compliance Impact

This vulnerability could lead to severe compliance violations under standards like GDPR and HIPAA due to potential unauthorized access, data disclosure, and system compromise. Exploitation may result in unauthorized data exposure, which violates GDPR's data protection requirements, and unauthorized access to sensitive systems, which conflicts with HIPAA's security controls for protected health information.

Mitigation Strategies

Immediately disable the ADB daemon on the router if possible. Block TCP port 7628 in the router's firewall settings. Ensure the device is not accessible from untrusted networks. Update the firmware if a patch is available.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-52199. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart