CVE-2025-70998

CRITICAL

UTT HiPER 810 v1.5.0-140603 - Auth Bypass

Title source: llm

Description

UTT HiPER 810 / nv810v4 router firmware v1.5.0-140603 was discovered to contain insecure default credentials for the telnet service, possibly allowing a remote attacker to gain root access via a crafted script.

References (1)

[Various Sources] https://github.com/cha0yang1/UTT-nv810v4-telnet-backdoor

View Writeup ZIP pw:eip

Scores

CVSS v3 9.8

EPSS 0.0026

EPSS Percentile 48.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-1188

Status published

Products (1)

utt/810_firmware 1.5.0-140603

Published Feb 18, 2026

Tracked Since Feb 18, 2026