CVE-2017-7964

CRITICAL

Zyxel WRE6505 Firmware < v1.00(aaqb.3)c0 - Default Credentials for TELNET

Title source: llm
STIX 2.1

Description

Zyxel WRE6505 devices have a default TELNET password of 1234 for the root and admin accounts, which makes it easier for remote attackers to conduct DNS hijacking attacks by reconfiguring the built-in dnshijacker process.

References (1)

Core 1
Core References
Exploit, Patch, Third Party Advisory x_refsource_misc
https://www.oxy-gen.mobi/blog.html

Scores

CVSS v3 10.0
EPSS 0.0248
EPSS Percentile 82.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

CWE
CWE-1188
Status published
Products (1)
zyxel/wre6505_firmware < v1.00\(aaqb.3\)c0
Published Apr 19, 2017
Tracked Since Feb 18, 2026