Primary

Context

I-O Data WN-7D36QR Series Routers Hidden Functionality Vulnerability Allowing SSH Activation

Vulnerability

A hidden functionality vulnerability has been identified in I-O Data wireless LAN routers WN-7D36QR and WN-7D36QR/UE, both running firmware through version 1.1.3. This vulnerability allows a remote authenticated attacker to enable SSH on the device.

Impact

Exploitation of this vulnerability could result in SSH being enabled on the affected router by a remote authenticated attacker.

Remediation

Users are advised to update the router's firmware to version 2.1.3, which addresses this vulnerability. Firmware update instructions are available on the I-O Data support website.

Added: Sep 17, 2025, 4:24 AM

Updated: Sep 17, 2025, 4:24 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

5.2

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

5.2

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

I-O Data WN-7D36QR Series Routers Hidden Functionality Vulnerability Allowing SSH Activation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating