EIP-2026-101339

PRE-CVE

KZTech T3500V 4G LTE CPE 2.0.1 - Weak Default WiFi Password Algorithm

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101339. PoCs published by LiquidWorm.

AI-analyzed exploit summary The vulnerability involves a weak default WiFi password algorithm in KZTech/JatonTec/Neotel JT3500V 4G LTE CPE devices, where the SSID and password are derived from the WAN MAC address. This allows attackers to predict and bypass WiFi authentication.

Description

KZTech T3500V 4G LTE CPE 2.0.1 - Weak Default WiFi Password Algorithm

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textremotehardware

https://www.exploit-db.com/exploits/49695

View Code ZIP pw:eip

The vulnerability involves a weak default WiFi password algorithm in KZTech/JatonTec/Neotel JT3500V 4G LTE CPE devices, where the SSID and password are derived from the WAN MAC address. This allows attackers to predict and bypass WiFi authentication.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1

No auth needed

Prerequisites: Physical or logical access to the device's MAC address

MITRE ATT&CK

T1110 - Brute Force

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026