An issue discovered in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to escalate privileges via WGET command to the Network Diagnosis endpoint.
https://blog.prodefense.io/zbt-we1626-wireless-router-cve-disclosures-b3534484d97d