CVE-2026-10045
CVE-2026-10045

9.8CRITICAL

Key Information:

Vendor: Shenzhen Kangda Xin Intelligent Network Technology Co., Ltd
Status: Dr300
Vendor: CVE Published:; 9 June 2026

🔔 Create Shenzhen Kangda Xin Intelligent Network Technology Co., Ltd Vulnerability Alert

What is CVE-2026-10045?

Shenzhen Kangda Xin Intelligent Network Technology Company's router, model DR300, version 2.1.2.121, contains hardcoded login credentials and has telnet enabled by default on WAN and LAN interfaces. These vulnerabilities allow attackers to read and write to memory, modify firmware stored in flash, inspect active connections, and view currently connected devices.

Affected Version(s)

DR300 2.1.2.121

References

https://rubenabreu.xyz/post/temu-routers-and-their-implic...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 9, 2026
Vulnerability Reserved
May 28, 2026

CVE-2026-10045 Data

JSON