In totolink a3100r V5.9c.4577, the hard-coded telnet password can be discovered from official released firmware. An attacker, who has connected to the Wi-Fi, can easily telnet into the target with root shell if the telnet is function turned on.Referenceshttp://totolink.comhttp://a3100r.comhttps://hackmd.io/ZkeEB-VvRiWBS53rFKG8DQ
