CVE-2025-53754 MEDIUM

CVE-2025-53754: Hard-coded Credentials Vulnerability in Digisol DG-GR6821AC Router

Vendor Digisol
Product XPON ONU Wi-Fi Router (DG-GR6821AC)
Weakness CWE-798 · Hardcoded credentials
Published July 16, 2025
Last update July 16, 2025

CVSS base score

5.1/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

This vulnerability exists in Digisol DG-GR6821AC Router due to hard-coded Root Access Credentials in system configuration of the device firmware. An attacker with physical access could exploit this vulnerability by extracting the firmware and analyzing the binary data to obtain the stored root access credentials. Successful exploitation of this vulnerability could allow the attacker to gain admin access to the targeted device.

Key dates

02Disclosure timeline

July 16, 2025 CVE published
July 16, 2025 Record updated