EIP-2026-101825

The exploit demonstrates an unauthenticated configuration disclosure vulnerability in KZTech/JatonTec/Neotel JT3500V 4G LTE CPE devices. By sending a direct HTTP GET request to the export_settings.cgi file, an attacker can download sensitive configuration data, potentially leading to authentication bypass and full system access.