Unrated severityNVD Advisory· Published Feb 4, 2014· Updated Apr 29, 2026

CVE-2014-0329

Description

The TELNET service on the ZTE ZXV10 W300 router 2.1.0 has a hardcoded password ending with airocon for the admin account, which allows remote attackers to obtain administrative access by leveraging knowledge of the MAC address characters present at the beginning of the password.

Affected products

Zte/Zxv10 W300
cpe:2.3:h:zte:zxv10_w300:2.1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/228886nvdUS Government Resource
blog.alguien.at/2014/02/hackeando-el-router-zte-zxv10-w300-v21.htmlnvd
osvdb.org/102816nvd
packetstormsecurity.com/files/125142/ZTE-ZXV10-W300-Hardcoded-Credentials.htmlnvd
www.securityfocus.com/bid/65310nvd
exchange.xforce.ibmcloud.com/vulnerabilities/90958nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.020
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000