CyberSum logo
Back

Router Vulnerability

Cyber Security News by CyberSum.net
3 sources
A newly disclosed vulnerability in DrayTek's Vigor routers could allow remote attackers to execute arbitrary code and gain full control of affected devices, the flaw is rated CVSS 8.8 and affects multiple Vigor router models, it can be exploited through either the LAN web interface or EasyVPN, the vulnerability originates in the LAN web administration interface and uses an uninitialized variable, allowing an attacker to send specially crafted HTTP requests that cause memory corruption and potentially allow arbitrary code execution, DrayTek has released patches for all affected models and urges users to update immediately to prevent exploitation and potential system hijacking.

Also Read

New GNU/Linux Rootkit LinkPro Discovered in AWS Infrastructure

An investigation into a compromised AWS-hosted infrastructure revealed a new GNU/Linux rootkit called LinkPro. The attackers exploited a vulnerable Jenkins server (CVE-2024-23897) to deploy a malicious Docker image on Kubernetes clusters. The rootkit, written in Golang, features eBPF modules for concealment and remote activation, allowing attackers to gain persistence and execute commands. The sophisticated malware supports multiple communication protocols and uses a 'magic packet' for activation. The threat actors are suspected to be financially motivated.

By Cyber Security News by CyberSum.net