Critical severity9.8NVD Advisory· Published Sep 20, 2017· Updated May 13, 2026

CVE-2017-8771

Description

On BE126 WIFI repeater 1.0 devices, an attacker can log into telnet (which is open by default) with default credentials as root (username:"root" password:"root"). The attacker can make a user that is connected to the repeater click on a malicious link that will log into the telnet and will infect the device with malicious code.

Affected products

Twsz/WiFi Repeater Firmware
cpe:2.3:o:twsz:wifi_repeater_firmware:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.digitalwhisper.co.il/files/Zines/0x56/DW86-1-RepeaterHack.pdfnvdTechnical DescriptionThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000