CVE-2026-2617HIGH 8.8EPSS p45.7%

CVE-2026-2617CVE-2026-2617

Description

A vulnerability was found in Beetel 777VR1 up to 01.00.09. This affects an unknown function of the component Telnet Service/SSH Service. The manipulation results in insecure default initialization of resource. The attack can only be performed from the local network. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.64% probability of exploitation · percentile 45.7% · 2026-06-18T12:00:27Z
Published2026-02-17
Last modified2026-04-29

Underlying weaknesses· 1

CWE-1188

References

  1. https://gist.github.com/raghav20232023/39e3d88d1bc2bcef89bb0f3b5fbb73e0
  2. https://gist.github.com/raghav20232023/39e3d88d1bc2bcef89bb0f3b5fbb73e0#proofsteps-to-reproduce
  3. https://vuldb.com/?ctiid.346267
  4. https://vuldb.com/?id.346267
  5. https://vuldb.com/?submit.751436
  6. https://vuldb.com/?submit.751568

1

TypeTargetConfidenceTier
WeaknessInitialization of a Resource with an Insecure Defaultcwe-11880%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-2616
CVE
CVE-2025-6529
CVE
CVE-2025-28202
CVE
CVE-2026-6989
CVE
CVE-2025-1819
CVE
CVE-2025-2701
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.