CVE-2022-46080

CRITICAL

Nexxt Nebula 1200-AC <15.03.06.60 - Auth Bypass, Command Injection

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2022-46080. PoCs published by geniuszly, yerodin.

AI-analyzed exploit summary This PoC exploits CVE-2022-46080 to enable Telnet on Nexxt routers without authentication by sending a crafted POST request to the `/goform/SetTelnetCfg` endpoint. It allows an attacker to set a custom Telnet port and password for unauthorized access.

Description

Nexxt Nebula 1200-AC 15.03.06.60 allows authentication bypass and command execution by using the HTTPD service to enable TELNET.

Exploits (3)

nomisec WORKING POC 8 stars

by geniuszly · poc

https://github.com/geniuszly/CVE-2022-46080

View Code ZIP pw:eip

This PoC exploits CVE-2022-46080 to enable Telnet on Nexxt routers without authentication by sending a crafted POST request to the `/goform/SetTelnetCfg` endpoint. It allows an attacker to set a custom Telnet port and password for unauthorized access.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Nexxt routers (version 15.03.06.60)

No auth needed

Prerequisites: Network access to the target router · Python 3.x with `requests` library

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1078 - Valid Accounts

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC

by yerodin · poc

https://github.com/yerodin/CVE-2022-46080

View Code ZIP pw:eip

This PoC exploits an unauthenticated RCE vulnerability in Nexxt Router Firmware 15.03.06.60 by enabling Telnet access with a specified password and port via a crafted POST request to the `/goform/SetTelnetCfg` endpoint. The exploit bypasses authentication and allows remote command execution via Telnet.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Nexxt Router Firmware 15.03.06.60 (Nexxt Nebula 1200-AC)

No auth needed

Prerequisites: Network access to the router's web interface · Router running vulnerable firmware version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1078 - Valid Accounts

devstral-2 · analyzed Feb 16, 2026 Full analysis →

inthewild WORKING POC

poc

https://github.com/geniuszlyy/cve-2022-46080

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2022-46080, targeting Nexxt routers to enable Telnet service without authentication. The exploit sends a crafted POST request to the router's endpoint to activate Telnet with a specified password and port.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Nexxt Router (version 15.03.06.60)

No auth needed

Prerequisites: Python 3.x · requests library · network access to the target router

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory

https://github.com/yerodin/CVE-2022-46080

Not Applicable

https://nexxtsolutions.com

Scores

CVSS v3 9.8

EPSS 0.1519

EPSS Percentile 94.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-863

Status published

Products (1)

nexxtsolutions/nebula1200-ac_firmware 15.03.06.60

Published Jul 06, 2023

Tracked Since Feb 18, 2026