Primary

Context

Netis E1+ Hardcoded Root Account Vulnerability Allowing Unauthorized Administrative Access

Vulnerability

A vulnerability exists in the Netis E1+ router, specifically in version 1.2.32533, due to a hardcoded root account. This flaw allows unauthenticated attackers to access the device using predefined credentials. Exploitation of this vulnerability provides full administrative rights on the network device, as the embedded root account's password can be cracked.

Impact

Exploitation of this vulnerability leads to unauthorized administrative access on the affected device, allowing attackers to fully control the router's functions and settings.

Reproduction

The vulnerability can be reproduced by accessing the Netis E1+ router running version 1.2.32533. The hardcoded root account can be used to log in in an unauthorized manner. Once logged in, the root account's password can be cracked, providing full administrative access.

Added: Feb 3, 2026, 10:36 PM

Updated: Feb 3, 2026, 10:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.3

remediation

0.0

relevance

2.5

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.3

remediation

0.0

relevance

2.5

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netis E1+ Hardcoded Root Account Vulnerability Allowing Unauthorized Administrative Access

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating