CISA alerts U.S. federal agencies about hackers exploiting a recently patched ScreenConnect vulnerability for remote code execution and highlights active attacks on ASUS routers and Craft CMS. The threats include multiple security flaws, with some involving state-sponsored cyber activities targeted at specific devices and content management systems. #ScreenConnect #ASUSRouterVulnerabilities #CraftCMS
Keypoints
- hackers are exploiting a known vulnerability in ScreenConnect to execute remote code on servers.
- Four additional security flaws in ASUS routers and Craft CMS are actively targeted by threat actors.
- The CVE-2025-3935 vulnerability in ScreenConnect allows privilege escalation and potential remote code execution.
- ASUS router vulnerabilities, particularly CVE-2021-32030 and CVE-2023-39780, have been exploited in stealth attacks.
- CISA mandates mitigation actions for affected products, requiring federal agencies to act by June 23.