A path traversal bug found in Arcadyan firmware-based routers is being exploited by threat actors actively.
The Arcadyan firmware is being used by 17 brands for over 20 different models of routers, summing up to millions of devices in the wild now. However, while all these are at risk already, reports revealed that exploiting has already started against them.
Authentication Bypass Bug in Routers
In April this year, the tenable group found that a critical path traversal vulnerability in various router models puts millions of routers at risk now. Tracked as CVE-2021-20090 , this vulnerability was given a severity score of 9.9/10.
A little video demo from the Buffalo writeup ( https://t.co/ySft5EP299 ) : pic.twitter.com/1ulDi0CyXZ — evan grant (@stargravy) August 3, 2021
