Security News > 2024 > December > Hackers exploit Four-Faith router flaw to open reverse shells

Hackers exploit Four-Faith router flaw to open reverse shells

2024-12-30 18:03

Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. [...]

News URL

https://www.bleepingcomputer.com/news/security/hackers-exploit-four-faith-router-flaw-to-open-reverse-shells/

#exploit #hacker #router #CVE-2024-12856

Related news

Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet (source)
Hackers Exploit Webview2 to Deploy CoinLurker Malware and Evade Security Detection (source)
New botnet exploits vulnerabilities in NVRs, TP-Link routers (source)
Hackers exploit DoS flaw to disable Palo Alto Networks firewalls (source)
15,000+ Four-Faith Routers Exposed to New Exploit Due to Default Credentials (source)
Malware botnets exploit outdated D-Link routers in recent attacks (source)
New Mirai botnet targets industrial routers with zero-day exploits (source)
Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks (source)
Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens (source)
Hackers Exploit Aviatrix Controller Vulnerability to Deploy Backdoors and Crypto Miners (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2024-12-27	CVE-2024-12856	The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command injection vulnerability.	0.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.