OTORIO uncovers security vulnerabilities in industrial cellular router vendors

Share post:

OTORIO discovered various security flaws in the cloud management systems of prominent industrial cellular router suppliers Sierra Wireless, Teltonika Networks, and InHand Networks.

OTORIO’s analysis uncovered 11 vulnerabilities that allow remote code execution and full control of hundreds of thousands of devices and OT networks. In the instance of Sierra Wireless, attackers may discover unregistered cloud-connected devices, extract serial numbers from them using the AirVantage online Warranty Checker application, and register them under their control. This empowers them to carry out arbitrary orders.

Meanwhile, CVE-2023-22601, CVE-2023-22600, and CVE-2023-22598 can be used to exploit InHand Networks, allowing remote code execution with root access, issuing reboot orders, and pushing firmware upgrades. The vulnerabilities in Teltonika Networks’ remote management system (RMS) are in the external API and interfaces, exposing sensitive device information and passwords. This allows attackers to run remote programs, discover controlled network devices, and impersonate genuine devices.

These vulnerabilities, if exploited, might allow attackers to circumvent existing security measures, harvest sensitive data, and remotely execute malicious code within internal networks. Furthermore, attackers can get unauthorized access to network devices, allowing them to carry out harmful actions with elevated privileges, such as forced shutdowns.

The sources for this piece include an article in TheHackerNews.

SUBSCRIBE NOW

Related articles

Hackers Plant False Memories in ChatGPT to Steal User Data

A security researcher has uncovered a vulnerability in ChatGPT that could allow hackers to store false information and...

“Octo2” Trojan Targets Bank Accounts by Posing as VPN or Chrome Apps on Android

A new malware variant called “Octo2” is spreading across Android devices by posing as popular apps like NordVPN...

Evilginx – Open source tool can bypass Multi-Factor Authentication (MFA)

Security vendor Abnormal Security is reporting a new cybersecurity tool that is gaining traction among cybercriminals. The tool,...

Kaspersky’s exit from US market frightens some customers

Kaspersky, the Russian cybersecurity firm, has unexpectedly removed its antivirus software from U.S. customers' computers, replacing it with...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways