"DrayTek Vulnerabilities Added to CISA KEV Catalog Exploited in Global Campaign"
Multiple threat groups have targeted organizations worldwide through the exploitation of two old vulnerabilities in a DrayTek product. Tenable researchers discovered two flaws in DrayTek VigorConnect, a management software for DrayTek network equipment, in 2021, which the US Cybersecurity and Infrastructure Security Agency (CISA) has now added to its Known Exploited Vulnerabilities (KEV) catalog. The exploited flaws are path traversal issues that enable an unauthenticated attacker to download arbitrary files with root privileges from the underlying operating system. This article continues to discuss the two DrayTek vulnerabilities added to CISA's KEV catalog that multiple threat groups have exploited to steal data from organizations worldwide.
Submitted by grigby1