Description
The firmware in KAON CG3000TC and CG3000T routers contains hard-coded credentials in clear text (shared across all routers of this model) that an unauthenticated remote attacker could use to execute commands with root privileges. This vulnerability has been fixed in firmware version: 1.00.67 for CG3000TC and 1.00.27 for CG3000T.
References (1)
Core 1
Core References
Various Sources third-party-advisory
https://cert.pl/posts/2026/01/CVE-2025-7072/
Scores
CVSS v4
9.3
EPSS
0.0054
EPSS Percentile
41.1%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
total
Details
CWE
CWE-798
Status
published
Products (2)
KAON/CG3000T
< 1.00.27
KAON/CG3000TC
< 1.00.67
Published
Jan 09, 2026
Tracked Since
Feb 18, 2026