A significant post-authentication vulnerability affecting Four-Faith industrial routers has been actively exploited in the wild. Assigned as CVE-2024-12856, this flaw allows attackers to execute unauthenticated remote command injections by leveraging the routers’ default credentials. Details of the Exploitation The vulnerability impacts at least two Four-Faith router models—F3x24 and F3x36. It involves leveraging the /apply.cgi endpoint over HTTP by […]

The post Four-Faith Industrial Routers Vulnerability Exploited in the Wild to Gain Remote Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

Source: gbHackers
Source Link: https://gbhackers.com/four-faith-industrial-routers-vulnerability/