CVE-2020-37092

HIGH

Netis E1+ <1.2.32533 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-37092. PoCs published by Besim.

AI-analyzed exploit summary This exploit reveals a backdoor account with root privileges in Netis E1+ firmware version 1.2.32533. The credentials are provided in plaintext, and a John the Ripper session confirms the password hash can be cracked.

Description

Netis E1+ version 1.2.32533 contains a hardcoded root account vulnerability that allows unauthenticated attackers to access the device with predefined credentials. Attackers can leverage the embedded root account with a crackable password to gain full administrative access to the network device.

Exploits (1)

exploitdb WORKING POC
by Besim · textwebappshardware
https://www.exploit-db.com/exploits/48382

This exploit reveals a backdoor account with root privileges in Netis E1+ firmware version 1.2.32533. The credentials are provided in plaintext, and a John the Ripper session confirms the password hash can be cracked.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Netis E1+ V1.2.32533
No auth needed
Prerequisites: access to the device's login interface
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/48382
Various Sources product
http://www.netis-systems.com
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/netis-e-backdoor-account-root

Scores

CVSS v3 7.5
EPSS 0.0028
EPSS Percentile 19.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-798
Status published
Products (1)
Netis Systems Co., Ltd./Netis E1+ 1.2.32533
Published Feb 03, 2026
Tracked Since Feb 18, 2026