Login Sign Up

CVE-2026-1407

2.0 LOW

📋 TL;DR

This vulnerability in Beetel 777VR1 routers allows attackers with physical access to the device to extract sensitive information via the UART interface. The exploit requires physical device access and has high complexity, making it difficult to execute remotely. Only users of affected Beetel router models with vulnerable firmware versions are impacted.

💻 Affected Systems

Products:
  • Beetel 777VR1
Versions: up to 01.00.09/01.00.09_55
Operating Systems: Embedded router firmware
Default Config Vulnerable: ⚠️ Yes
Notes: All devices running affected firmware versions are vulnerable by default. Physical access to UART interface required.

📦 What is this software?

777vr1 Firmware by Beetel

View all CVEs affecting 777vr1 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers with physical access could extract sensitive configuration data, credentials, or encryption keys from the router, potentially compromising network security.

🟠

Likely Case

Limited information disclosure to attackers with physical device access, possibly revealing non-critical configuration details.

🟢

If Mitigated

Minimal impact if physical security controls prevent unauthorized access to devices.

🌐 Internet-Facing: LOW - Attack requires physical access to the device, not remote exploitation.
🏢 Internal Only: MEDIUM - Physical access to internal network devices could lead to information disclosure.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: HIGH

Exploit requires physical device access and technical skill to interface with UART pins. Public exploit code exists but execution is difficult.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available - vendor did not respond to disclosure

Restart Required: No

Instructions:

No official patch available. Consider replacing affected devices or implementing physical security controls.

🔧 Temporary Workarounds

Physical Security Hardening

all

Implement physical security measures to prevent unauthorized access to router hardware

UART Interface Disable/Protection

all

If firmware allows, disable or password-protect UART debugging interface

🧯 If You Can't Patch

  • Deploy physical security controls: locked cabinets, access logs, surveillance for router locations
  • Replace affected Beetel routers with different models or from vendors with better security response

🔍 How to Verify

Check if Vulnerable:

Check router firmware version via web interface or serial console. Vulnerable if version is 01.00.09 or earlier.

Check Version:

Check via router web interface at 192.168.1.1 or serial console connection

Verify Fix Applied:

No fix available to verify. Consider device replacement as mitigation.

📡 Detection & Monitoring

Log Indicators:

  • Physical access logs showing unauthorized entry to router locations
  • Serial console access attempts if logging enabled

Network Indicators:

  • No network-based indicators - attack requires physical access

SIEM Query:

No applicable network SIEM query - focus on physical security monitoring

📊 Metadata

CVE ID: CVE-2026-1407
CVSS v3 Score: 2.0 (LOW)
CVSS Vector: CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-200
EPSS Score: 0.01% exploit probability (0.3th percentile)
Published: January 25, 2026
Last Updated: January 30, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-1407, you might also want to check these:

CVE-2025-61481 10.0

MikroTik RouterOS and SwOS expose their WebFig management interface over unencrypted HTTP by default...

Same vulnerability type (CWE-200)
CVE-2025-53624 10.0

The Docusaurus gists plugin versions before 4.0.0 expose GitHub Personal Access Tokens in client-sid...

Same vulnerability type (CWE-200)
CVE-2023-49103 10.0

This vulnerability in ownCloud's graphapi app exposes PHP configuration details (phpinfo) via a thir...

Same vulnerability type (CWE-200)