EIP-2026-101565

PRE-CVE

Billion / TrueOnline / ZyXEL Routers - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101565. PoCs published by Pedro Ribeiro.

AI-analyzed exploit summary This is a detailed technical writeup describing multiple command injection vulnerabilities in ZyXEL and Billion routers, including unauthenticated and authenticated exploits via syslog remote forwarding functions. The analysis covers affected firmware versions, attack vectors, and constraints.

Description

Billion / TrueOnline / ZyXEL Routers - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by Pedro Ribeiro · textwebappshardware

https://www.exploit-db.com/exploits/43884

View Code ZIP pw:eip

This is a detailed technical writeup describing multiple command injection vulnerabilities in ZyXEL and Billion routers, including unauthenticated and authenticated exploits via syslog remote forwarding functions. The analysis covers affected firmware versions, attack vectors, and constraints.

Classification

Writeup 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ZyXEL P660HN-T1A v1/v2, Billion 5200W-T

No auth needed

Prerequisites: Network access to the router's web interface

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026