Security News > 2022 > August > Critical RCE Bug Could Let Hackers Remotely Take Over DrayTek Vigor Routers
As many as 29 different router models from DrayTek have been identified as affected by a new critical, unauthenticated, remote code execution vulnerability that, if successfully exploited, could lead to full compromise of the device and unauthorized access to the broader network.
Over 200,000 devices from the Taiwanese manufacturer are said to have the vulnerable service currently exposed on the internet and would require no user interaction to be exploited.
The breach of a network appliance such as Vigor 3910 could not only leave a network open to malicious actions such as credential and intellectual property theft, botnet activity, or a ransomware attack, but also cause a denial-of-service condition.
The disclosure comes a little over a month after it emerged that routers from ASUS, Cisco, DrayTek, and NETGEAR are under assault from a new malware called ZuoRAT targeting North American and European networks.
"Edge devices, such as the Vigor 3910 router, live on the boundary between internal and external networks," Laulheret noted.
"As such they are a prime target for cybercriminals and threat actors alike. Remotely breaching edge devices can lead to a full compromise of the businesses' internal network."
News URL
https://thehackernews.com/2022/08/critical-rce-bug-could-let-hackers.html
Related news
- Fortinet warns of critical RCE bug in endpoint management software (source)
- Fortra Patches Critical RCE Vulnerability in FileCatalyst Transfer Tool (source)
- CISA shares critical infrastructure defense tips against Chinese hackers (source)
- Ivanti Releases Urgent Fix for Critical Sentry RCE Vulnerability (source)
- US sanctions APT31 hackers behind critical infrastructure attacks (source)
- Critical RCE bug in 92,000 D-Link NAS devices now exploited in attacks (source)
- Russian Sandworm hackers targeted 20 critical orgs in Ukraine (source)