Description
SOOTEWAY Wi-Fi Range Extender v1.5 was discovered to use default credentials (the admin password for the admin account) to access the TELNET service, allowing attackers to erase/read/write the firmware remotely.
References (2)
Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://blog-ssh3ll.medium.com/acexy-wireless-n-wifi-repeater-vulnerabilities-8bd5d14a2990
Product x_refsource_misc
https://www.amazon.it/SOOTEWAY-Ripetitore-Extender-Wireless-Wmplificatore/dp/B08G55T46P
Scores
CVSS v3
7.2
EPSS
0.0130
EPSS Percentile
66.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (1)
sooteway_wi-fi_range_extender_project/sooteway_wi-fi_range_extender
1.5
Published
May 20, 2022
Tracked Since
Feb 18, 2026