Security News > 2024 > December > Hackers exploit Four-Faith router flaw to open reverse shells

Hackers exploit Four-Faith router flaw to open reverse shells

2024-12-30 18:03

Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. [...]

News URL

https://www.bleepingcomputer.com/news/security/hackers-exploit-four-faith-router-flaw-to-open-reverse-shells/

#exploit #hacker #router #CVE-2024-12856

Related news

Chinese Hackers Exploit MAVInject.exe to Evade Detection in Targeted Cyber Attacks (source)
Hackers Exploit Signal's Linked Devices Feature to Hijack Accounts via Malicious QR Codes (source)
Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)
Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
Chinese Hackers Breach Juniper Networks Routers With Custom Backdoors and Rootkits (source)
Hackers Exploit Severe PHP Flaw to Deploy Quasar RAT and XMRig Miners (source)
Top 3 MS Office Exploits Hackers Use in 2025 – Stay Alert! (source)
Hackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site Images (source)
Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWisp (source)
Hackers exploit WordPress plugin auth bypass hours after disclosure (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2024-12-27	CVE-2024-12856	The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command injection vulnerability.	0.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.