Researchers recently analyzed the GL-AX1800 router and found multiple security vulnerabilities that could allow attackers to remotely access restricted files. If these vulnerabilities are not addressed promptly, they could lead to significant security breaches.
During the assessment, Hadess security researchers identified a vulnerability known as CVE-2023-47464 in GL-AX1800 routers. This router is known for its high-speed data transmission, mass device connectivity, and low latency gaming capabilities.
The vulnerabilities in the GL-AX1800 router include susceptibility to CSRF attacks, insecure file uploads, path traversal vulnerability, file overwrite vulnerability leading to RCE, and unrestricted file access download.
Promptly addressing these vulnerabilities is crucial for ensuring user safety in network devices. Hadess has released a Proof of Concept (PoC) demonstrating the exploitation of the CVE-2023-47464 vulnerability. Users running Firmware Version 4.0.0 are urged to upgrade to the latest version, 4.5.0, to protect against cyber attacks.
In the rapidly evolving digital landscape, once a vulnerability is exposed and a PoC is available, there is typically an increase in attacks exploiting it. The Citrixbleed vulnerability, for example, has been exploited in real-world scenarios after the release of a PoC.
To mitigate potential threats, users are advised to stay informed on cybersecurity news and promptly apply security patches. Follow Hadess on LinkedIn & Twitter for the latest updates.
