cbcvebase.
CVE-2018-1146
published 2018-04-19

CVE-2018-1146: A remote unauthenticated user can enable telnet on the Belkin N750 using firmware version 1.10.22 by sending a crafted HTTP request to set.cgi. When enabled…

PriorityP260high7.5CVSS 3.0
AVNACLPRNUINSUCNIHAN
EPSS
29.12%
97.9th percentile
A remote unauthenticated user can enable telnet on the Belkin N750 using firmware version 1.10.22 by sending a crafted HTTP request to set.cgi. When enabled the telnet session requires no password and provides root access.

Affected

2 ranges
VendorProductVersion rangeFixed in
belkinn750_db_wi-fi_dual-band_n+_gigabit_router
belkinn750_firmware

Detection & IOCsextracted from sources · hover to see the quote

pathset.cgi
  • Look for unauthenticated HTTP requests targeting set.cgi on Belkin N750 routers, which may be attempting to enable the telnet service remotely.
  • Monitor for unexpected telnet service activation on Belkin N750 routers; successful exploitation results in a no-password root telnet session.
  • Alert on any unauthenticated telnet connections to Belkin N750 F9K1103 v1 devices, as exploitation grants full administrator privileges.
  • ·Vulnerability is confirmed only on Belkin N750 firmware version 1.10.22; no vendor patch has been released.
  • ·No fix is available from the vendor; detection and network-level controls are the only mitigations.

CVSS provenance

nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.