Security News > 2024 > December > Hackers exploit Four-Faith router flaw to open reverse shells

Hackers exploit Four-Faith router flaw to open reverse shells

2024-12-30 18:03

Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. [...]

News URL

https://www.bleepingcomputer.com/news/security/hackers-exploit-four-faith-router-flaw-to-open-reverse-shells/

#exploit #hacker #router #CVE-2024-12856

Related news

Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails (source)
High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables (source)
Chinese hackers exploit Fortinet VPN zero-day to steal credentials (source)
Chinese Hackers Exploit T-Mobile and Other U.S. Telecoms in Broader Espionage Campaign (source)
Hackers exploit critical bug in Array Networks SSL VPN products (source)
APT-C-60 Hackers Exploit StatCounter and Bitbucket in SpyGlace Malware Campaign (source)
Chinese hackers breached T-Mobile's routers to scope out network (source)
Hackers exploit ProjectSend flaw to backdoor exposed servers (source)
Russia-Linked Turla Exploits Pakistani Hackers' Servers to Target Afghan and Indian Entities (source)
Hackers Target Uyghurs and Tibetans with MOONSHINE Exploit and DarkNimbus Backdoor (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2024-12-27	CVE-2024-12856	The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command injection vulnerability.	0.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.