Akamai SIRT Security Advisory: CVE-2023-26801 Exploited to Spread Mirai Botnet Malware

1 / 6

Akamai SIRT Security Advisory: CVE-2023-26801 Exploited to Spread Mirai Botnet Malware

Akamai·Akamai SIRT·about 1 month ago

#JWiJ7YxZ

#mitigations #botattacks #threatintelligence #securityresearch #cybersecurity #vulnerability

Reading 0:00

15s threshold

Blog Security Research Akamai SIRT Security Advisory: CVE-2023-26801 Exploited to Spread Mirai Botnet Malware Editorial and additional commentary by Tricia Howard Executive summary \r\n Akamai researchers identified an active exploitation of CVE-2023-26801, a critical command injection vulnerability discovered in March 2023 (CVSS 9.8).&nbsp; \r\n \r\n The Akamai Security Intelligence Response Team (SIRT) observed this exploit in the wild as early as June 13, 2023, and it continues to be active. \r\n \r\n The vulnerability is being exploited to spread the Mirai botnet malware in the following firmware versions: LB-LINK BL-AC1900_2.0 V1.0.1, BL-WR9000 V2.4.9, BL-X26 V1.2.5, and BL-LTE300 V1.0.8. \r\n \r\n The vulnerability is caused by insufficient validation of the &quot;mac&quot; field, allowing unauthorized attackers to execute arbitrary commands on the affected devices. \r\n \r\n Exploitation of this vulnerability can lead to unauthorized access, device compromise, and lateral movement.…

Continue reading — create a free account

Join HashtagPLUS to read full articles, follow hashtags, vote, and join the conversation.

Create free account Log in

Menu

Akamai SIRT Security Advisory: CVE-2023-26801 Exploited to Spread Mirai Botnet Malware