Description

KAYSUS KS-WR1200 routers with firmware 107 expose SSH and TELNET services on the LAN interface with hardcoded root credentials (root:12345678). The administrator cannot disable these services or change the hardcoded password. (Changing the management GUI password does not affect SSH/TELNET authentication.) Any LAN-adjacent attacker can trivially log in with root privileges.

INFO

Published Date :

2026-01-08T00:00:00.000Z

Last Modified :

2026-01-08T21:22:55.946Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-68718 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-68718.

URL Resource
https://github.com/actuator/cve/blob/main/KAYSUS/CVE-2025-68718.txt cve-icon cve-icon
https://github.com/actuator/cve/tree/main/KAYSUS cve-icon cve-icon
https://www.kaysus.com/ks_wr3600__wifi_7_be3600_wireless_router.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System