EIP-2026-101489

PRE-CVE

USR IOT 4G LTE Industrial Cellular VPN Router 1.0.36 - Remote Root Backdoor

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101489. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit leverages hard-coded credentials ('usr' with password 'www.usr.cn') to gain root access via SSH on USR IOT 4G LTE Industrial Cellular VPN Routers. It uses Paramiko to establish an SSH connection and execute commands as root.

Description

USR IOT 4G LTE Industrial Cellular VPN Router 1.0.36 - Remote Root Backdoor

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · pythonremotehardware

https://www.exploit-db.com/exploits/50894

View Code ZIP pw:eip

This exploit leverages hard-coded credentials ('usr' with password 'www.usr.cn') to gain root access via SSH on USR IOT 4G LTE Industrial Cellular VPN Routers. It uses Paramiko to establish an SSH connection and execute commands as root.

Classification

Working Poc 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: USR IOT 4G LTE Industrial Cellular VPN Router (1.0.36, 1.2.7)

No auth needed

Prerequisites: Network access to the target device · SSH port (2222) accessible

MITRE ATT&CK

T1078.001 - Default Accounts

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026