The US cybersecurity agency CISA has published industrial control system (ICS) advisories for vulnerabilities that impact QNAP network video recorder (NVR) devices and Future X Communications (FXC) routers.
The advisories alerted organizations to the possibility of wild exploits for these vulnerabilities. The first CISA advisory alerts users to the existence of a high-severity command injection flaw (CVE-2023-49897) in the Japanese company FXC’s AE1021 and AE1021PE outlet wall routers, which are commonly found in hotels and residential buildings. This flaw could allow an authenticated attacker to remotely execute code via NTP server settings.
According to CISA, Japan’s critical infrastructure sectors for commercial facilities and IT are using the vulnerable products.
Read More: CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
