Primary

Context

KAON CG3000T and CG3000TC Routers Hard-Coded Credentials Vulnerability Allowing Root Command Execution

Vulnerability

A vulnerability exists in the firmware of KAON CG3000T and CG3000TC routers, where hard-coded credentials in clear text are embedded in the firmware. These credentials, shared across all routers of this model, can be exploited by an unauthenticated remote attacker to execute commands with root privileges. This issue has been addressed in firmware versions 1.00.67 for the CG3000TC model and 1.00.27 for the CG3000T model.

Impact

Exploitation of this vulnerability allows for unauthorized remote command execution with root privileges on the affected router.

Remediation

Users can upgrade to firmware version 1.00.67 for the CG3000TC model or version 1.00.27 for the CG3000T model to address this vulnerability.

Added: Jan 9, 2026, 12:21 PM

Updated: Jan 9, 2026, 12:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

KAON CG3000T and CG3000TC Routers Hard-Coded Credentials Vulnerability Allowing Root Command Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating