Pwnonu

**Name of the Vulnerable Software and Affected Versions** T3 Technology CPE T625Pro version 1.0.07 T3 Technology CPE T6825G version 1.0.03 T3 Technology CPE T7281 version 1.0.03 **Description** Incorrect access control in the web management interface allows unauthorized attackers to enable the Telnet service by sending a crafted request to a vulnerable CGI component. Telnet is a network protocol used on the Internet or local area networks to provide a bidirectional interactive text-oriented communication facility using a virtual terminal connection. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** T3 Technology CPE T625Pro version 1.0.07 T3 Technology CPE T6825G version 1.0.03 T3 Technology CPE T7281 version 1.0.03 **Description** Certain CPE models contain a hardcoded password for root access associated with the `superadmin` account. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** T3 Technology CPE T625Pro version 1.0.07 T3 Technology CPE T6825G version 1.0.03 **Description** An undocumented debug CGI endpoint allows unauthenticated attackers to execute arbitrary system commands with root privileges by providing a crafted HTTP query string. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.