EIP-2026-101851
PRE-CVEMTS MBlaze Ultra Wi-Fi / ZTE AC3633 - Multiple Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-101851. PoCs published by Ajin Abraham.
AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in the MTS MBlaze Ultra Wi-Fi / ZTE AC3633 router, including authentication bypass, credential theft, and Wi-Fi password extraction via static cookie manipulation and information disclosure.
Description
MTS MBlaze Ultra Wi-Fi / ZTE AC3633 - Multiple Vulnerabilities
Exploits (1)
exploitdb
WORKING POC
by Ajin Abraham · pythonwebappshardware
https://www.exploit-db.com/exploits/34128
This exploit demonstrates multiple vulnerabilities in the MTS MBlaze Ultra Wi-Fi / ZTE AC3633 router, including authentication bypass, credential theft, and Wi-Fi password extraction via static cookie manipulation and information disclosure.
Classification
Working Poc 95%
Attack Type
Auth Bypass | Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
MTS MBlaze Ultra Wi-Fi / ZTE AC3633 (System Version 107)
No auth needed
Prerequisites:
Network access to the target router (default IP: 192.168.1.1)
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026