EIP-2026-101151

PRE-CVE

Actiontec C1000A Modem - Backdoor Account

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101151. PoCs published by Joseph McDonagh.

AI-analyzed exploit summary This exploit demonstrates the presence of hardcoded credentials in the Actiontec C1000A modem, allowing unauthorized access via telnet. The PoC includes a login sequence and commands to verify the presence of multiple hardcoded user accounts.

Description

Actiontec C1000A Modem - Backdoor Account

Exploits (1)

exploitdb WORKING POC
by Joseph McDonagh · textremotehardware
https://www.exploit-db.com/exploits/43118

This exploit demonstrates the presence of hardcoded credentials in the Actiontec C1000A modem, allowing unauthorized access via telnet. The PoC includes a login sequence and commands to verify the presence of multiple hardcoded user accounts.

Classification
Working Poc 100%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Actiontec C1000A Modem Firmware CAC003-31.30L.86
No auth needed
Prerequisites: Network access to the target device · Telnet service enabled on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026