Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

Updated on December 13, 2024

A security flaw has been disclosed in OpenWrt’s Attended Sysupgrade (ASU) feature that, if successfully exploited, could have been abused to distribute malicious firmware packages.
The vulnerability, tracked as CVE-2024-54143, carries a CVSS score of 9.3 out of a maximum of 10, indicating critical severity. Flatt Security researcher RyotaK has been credited with discovering and reporting the…

Read the rest of the story at Read More

Source: The Hacker News

October 21, 2024 Uncategorized

Researchers Discover Severe Security Fla...

December 23, 2024 Uncategorized

AI Could Generate 10,000 Malware Variant...

April 29, 2025 Uncategorized

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

Related posts

Researchers Discover Severe Security Fla...

AI Could Generate 10,000 Malware Variant...

Google Reports 75 Zero-Days Exploited in...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines