CVE-2025-57428

MEDIUM

Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.201...

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-57428. PoCs published by 5ulfur.

AI-analyzed exploit summary This repository documents CVE-2025-57428, detailing a Telnet debug interface enabled by default on the Each Italy Wireless Mini Router WIRELESS-N 300M (firmware v28K.MiniRouter.20190211). The interface allows authenticated users to access low-level commands for flash/register manipulation, posing risks of firmware corruption or device bricking.

Description

Default credentials in Each Italy Wireless Mini Router WIRELESS-N 300M v28K.MiniRouter.20190211 allows attackers to gain access to the debug shell exposed via Telnet on Port 23 and execute hardware-level flash and register manipulation commands.

Exploits (1)

nomisec WRITEUP
by 5ulfur · poc
https://github.com/5ulfur/CVE-2025-57428

This repository documents CVE-2025-57428, detailing a Telnet debug interface enabled by default on the Each Italy Wireless Mini Router WIRELESS-N 300M (firmware v28K.MiniRouter.20190211). The interface allows authenticated users to access low-level commands for flash/register manipulation, posing risks of firmware corruption or device bricking.

Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Each Italy Wireless Mini Router WIRELESS-N 300M (firmware v28K.MiniRouter.20190211)
Auth required
Prerequisites: Network access to the device · Default or known credentials for Telnet authentication
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Various Sources
https://imgur.com/a/X9DNOBj

Scores

CVSS v3 6.5
EPSS 0.0019
EPSS Percentile 9.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-284
Status published
Published Sep 29, 2025
Tracked Since Feb 18, 2026