Submit #697498: ZLT M30S & M30S PRO MTNNGRM30S_1.47, M30SPRO_3.09.06 (Other versions might be vulnerable) Backdoor Credentialsinfo

TitelZLT M30S & M30S PRO MTNNGRM30S_1.47, M30SPRO_3.09.06 (Other versions might be vulnerable) Backdoor Credentials
BeschreibungA hard coded credential pair (guest:123456) grants full administrative privileges on the affected web interface of the mobile router. Although the interface initially displays a non-functional password change page with no menus, all administrative actions remain accessible when invoked directly. Page identifiers can also be referenced, bypassing the intended UI restrictions, effectively providing unrestricted administrative access to the system.
Quelle⚠️ https://youtu.be/o8rfjSlpRxY
Benutzer
 S33K3R (UID 92688)
Einreichung18.11.2025 17:59 (vor 5 Monaten)
Moderieren05.12.2025 17:58 (17 days later)
StatusAkzeptiert
VulDB Eintrag334521 [TOZED ZLT M30S/ZLT M30S PRO 1.47/3.09.06 Web Interface schwache Authentisierung]
Punkte17

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!