CVE-2026-10045NVD

Vulnerability Summary

Shenzhen Kangda Xin Intelligent Network Technology Company's router, model DR300, version 2.1.2.121, contains hardcoded login credentials and has telnet enabled by default on WAN and LAN interfaces. These vulnerabilities allow attackers to read and write to memory, modify firmware stored in flash, inspect active connections, and view currently connected devices.

Severity Level

CRITICAL(9.8)

Published Date

Jun 9, 2026

Last Modified

Jun 9, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.04%Probability

Root Weakness (CWE)

N/A

CVSS v3.1 Base Metrics

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionNone

ScopeUnchanged

ConfidentialityHigh

IntegrityHigh

AvailabilityHigh

External References

https://rubenabreu.xyz/post/temu-routers-and-their-implications
https://rubenabreu.xyz/post/temu-routers-and-their-implications

Critical Alert

CVE Watchtower

CVE-2026-10045NVD

Vulnerability Summary

External References