CVE-2026-35904

CRITICAL

T3 Technology CPE T625Pro 1.0.07 T6825G 1.0.03 T7281 1.0.03 - Unauthenticated Telnet Service Enablement via CGI Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-35904. PoCs published by PwnOnu.

AI-analyzed exploit summary This repository contains detailed technical writeups for three CVEs affecting T3 Technology CPE devices, including CVE-2026-35904 (unauthenticated Telnet enable), CVE-2026-35905 (hardcoded root credentials), and CVE-2026-35906 (unauthenticated RCE via debug CGI endpoint). The writeups include vulnerability details, proof-of-concept examples, attack scenarios, and remediation guidance.

Description

Incorrect access control in the web management interface of T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03, and T7281 v1.0.03 allows unauthorized attackers to enable the Telnet service via sending a crafted request to a vulnerable CGI component.

Exploits (1)

nomisec WRITEUP

by PwnOnu · poc

https://github.com/PwnOnu/T3-Technology-CPE-Advisories

View Code ZIP pw:eip

This repository contains detailed technical writeups for three CVEs affecting T3 Technology CPE devices, including CVE-2026-35904 (unauthenticated Telnet enable), CVE-2026-35905 (hardcoded root credentials), and CVE-2026-35906 (unauthenticated RCE via debug CGI endpoint). The writeups include vulnerability details, proof-of-concept examples, attack scenarios, and remediation guidance.

Classification

Writeup 100%

Attack Type

Auth Bypass | Rce | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: T3 Technology CPE devices (T625Pro, T6825G, T7281, etc.)

No auth needed

Prerequisites: Network access to the target device

MITRE ATT&CK