D-Link has announced three remote command execution vulnerabilities affecting all models of its DIR-878 router, which is now end-of-life but still in use. Exploit code has been published, raising concerns about potential abuse by threat actors like botnets #RondoDox #Aisuru.
Keypoints
- All models of D-Link DIR-878 routers are affected by three critical remote command execution vulnerabilities.
- The vulnerabilities are publicly disclosed with existing proof-of-concept exploit code.
- The affected device is end-of-life and no longer receives security updates from D-Link.
- Threat actors such as botnets can exploit these vulnerabilities to expand their attack infrastructure.
- A related botnet launched a massive DDoS attack leveraging vulnerabilities in network devices.