CVE-2026-34472: Pre-auth Credential Exposure and Auth Bypass in ZTE H188A V6 Routers
CVE-2026-34472ZTEH188AV6routersvulnerabilitypre-authcredentialexposureauthbypassunauthenticatedaccessWLANadmincredentialsroutingflawsetuplogicauthenticationtechnicalanalysiscomponentbreakdownsdecompiledfirmwarereviewLuaCGILuacontrol-flowobservationsproof-of-conceptPoCrepositorydisclosuretimeline
The post details a vulnerability (CVE-2026-34472) in ZTE H188A V6 routers, where a routing flaw enables unauthenticated access to sensitive configuration data, including WLAN and admin credentials. The issue stems from unintended exposure of pre-login setup logic, allowing attackers to bypass authentication. The technical analysis includes affected component breakdowns, decompiled firmware review, and Lua/CGILua control-flow observations. A proof-of-concept (PoC) repository and disclosure timeline are also provided.