Tech & Gadgets

Corporate routers vulnerable to OS command injection attack

Several business router models built by Taiwanese networking giant Zyxel had a critical vulnerability that could allow attackers to remotely execute any command. The manufacturer recently released a fix that addresses the flaw, so it is highly recommended to install it right away.

As the company explained in an advisory, the vulnerability is described as an “input validation error caused by improper handling of user-supplied data.” In other words, the underlying operating system fails to validate the data a user inputs, potentially allowing criminals to perform OS command injection. The bug is tracked as CVE-2024-7261and has a severity score of 9.8/10 – critical.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button