Security News > 2020 > September > Critical Vulnerabilities Expose MoFi Routers to Remote Attacks
2020-09-08 08:45
Routers made by MoFi Network are affected by several vulnerabilities, including critical flaws that can be exploited to remotely hack a device.
Some of the vulnerabilities can allow an unauthenticated, remote attacker who has access to this web interface to take complete control of the targeted router.
Some of the critical vulnerabilities can be exploited to authenticate on a device using hardcoded or weak credentials.
"The initial critical vulnerabilities have been patched," Mirch told SecurityWeek.
US-CERT was informed about the vulnerabilities on June 10 and it may have asked some ISPs to prevent remote access to their customers' routers.
News URL
Related news
- Critical vulnerabilities persist in high-risk sectors (source)
- Palo Alto Networks warns of critical RCE zero-day exploited in attacks (source)
- Critical RCE bug in VMware vCenter Server now exploited in attacks (source)
- QNAP addresses critical flaws across NAS, router software (source)
- CISA Urges Agencies to Patch Critical "Array Networks" Flaw Amid Active Attacks (source)
- Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks (source)
- VPN vulnerabilities, weak credentials fuel ransomware attacks (source)
- Japan warns of IO-Data zero-day router flaws exploited in attacks (source)
- OpenWrt orders router firmware updates after supply chain attack scare (source)
- Update your OpenWrt router! Security issue made supply chain attack possible (source)