CVE-2025-68716

HIGH

8.4

Description

KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 enable the SSH service enabled by default on the LAN interface. The root account is configured with no password, and administrators cannot disable SSH or enforce authentication via the CLI or web GUI. This allows any LAN-adjacent attacker to trivially gain root shell access and execute arbitrary commands with full privileges.

CVE Details

CVSS v3.1 Score8.4

SeverityHIGH

CVSS VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack VectorLOCAL

ComplexityLOW

Privileges RequiredNONE

User InteractionNONE

Published1/8/2026

Last Modified2/2/2026

Sourcenvd

Honeypot Sightings0

Affected Products

kaysus:ks-wr3600kaysus:ks-wr3600_firmware

Weaknesses (CWE)

CWE-284CWE-306CWE-521

References

https://github.com/actuator/cve/blob/main/KAYSUS/CVE-2025-68716.txt(cve@mitre.org)

https://github.com/actuator/cve/tree/main/KAYSUS(cve@mitre.org)

https://www.kaysus.com/ks_wr3600__wifi_7_be3600_wireless_router.html(cve@mitre.org)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.