The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Sierra Wireless AirLink ALEOS routers to its Known Exploited Vulnerabilities list due to active exploitation. This flaw, CVE-2018-4063, allows remote code execution through malicious HTTP requests, posing a significant threat to impacted systems. #CISA #CVE2018-4063
Keypoints
- The CVE-2018-4063 vulnerability involves an unrestricted file upload in Sierra Wireless AirLink routers.
- An attacker can exploit this flaw to upload malicious files and execute code remotely with root privileges.
- The vulnerability has been actively exploited by threat clusters such as Chaya_005, targeting industrial routers.
- Forescoutβs honeypot analysis revealed that industrial routers are the most attacked devices in operational technology environments.
- FCEB agencies are advised to update or discontinue affected devices before the end-of-support deadline in January 2026.
Read More: https://thehackernews.com/2025/12/cisa-adds-actively-exploited-sierra.html