CVE-2019-6441

CRITICAL

Coship RT3050 RT3052 RT7620 WM3300 - Unauthenticated Admin Password Reset via apply.cgi

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-6441. PoCs published by Adithyan AK.

AI-analyzed exploit summary This exploit leverages an unauthenticated password reset vulnerability in Coship Wireless Routers by submitting a crafted POST request to change the admin password to 'password123'. The PoC is a simple HTML form that automates the attack.

Description

An issue was discovered on Shenzhen Coship RT3050 4.0.0.40, RT3052 4.0.0.48, RT7620 10.0.0.49, WM3300 5.0.0.54, and WM3300 5.0.0.55 devices. The password reset functionality of the router doesn't have backend validation for the current password and doesn't require any type of authentication. By making a POST request to the apply.cgi file of the router, the attacker can change the admin username and password of the router.

Exploits (1)

exploitdb WORKING POC

by Adithyan AK · htmlwebappshardware

https://www.exploit-db.com/exploits/46180

View Code ZIP pw:eip

This exploit leverages an unauthenticated password reset vulnerability in Coship Wireless Routers by submitting a crafted POST request to change the admin password to 'password123'. The PoC is a simple HTML form that automates the attack.

Classification

Working Poc 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Coship Wireless Router (RT3052, RT3050, WM3300, RT7620)

No auth needed

Prerequisites: Network access to the router's web interface · Router must be vulnerable (specific versions listed)

MITRE ATT&CK

T1110.001 - Password Guessing T1078 - Valid Accounts

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/151202/Coship-Wireless-Router-Unauthenticated-Admin-Password-Reset.html

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/46180/

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/46180

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://packetstormsecurity.com/files/151202/Coship-Wireless-Router-Unauthenticated-Admin-Password-Reset.html

Exploit, Third Party Advisory x_refsource_misc

https://vulmon.com/exploitdetails?qidtp=EDB&qid=46180

Exploit, Third Party Advisory x_refsource_misc

https://www.anquanke.com/vul/id/1451446

Scores

CVSS v3 9.8

EPSS 0.5360

EPSS Percentile 98.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-287

Status published

Products (5)

coship/rt3050_firmware 4.0.0.40

coship/rt3052_firmware 4.0.0.48

coship/rt7620_firmware 10.0.0.49

coship/wm3300_firmware 5.0.0.54

coship/wm3300_firmware 5.0.0.55

Published Mar 21, 2019

Tracked Since Feb 18, 2026