Back to search
CVE-2025-7072
Published: Jan 9, 2026
Modified: Jan 9, 2026
PUBLISHED
Description
The firmware in KAON CG3000TC and CG3000T routers contains hard-coded credentials in clear text (shared across all routers of this model) that an unauthenticated remote attacker could use to execute commands with root privileges. This vulnerability has been fixed in firmware version: 1.00.67 for CG3000TC and 1.00.27 for CG3000T.
| Vendor | Product | Versions |
|---|---|---|
KAON | CG3000T | affected 0 - < 1.00.27 |
KAON | CG3000TC | affected 0 - < 1.00.67 |
Weaknesses (CWE)
References
https://cert.pl/posts/2026/01/CVE-2025-7072/
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now