Created on 2025-03-03 21:30 and updated on 2025-03-03 21:30.
Description
French cybersecurity company Sekoia observed the unknown threat actors deploying a backdoor by leveraging CVE-2023-20118 (CVSS score: 6.5), a critical security flaw impacting Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers that could result in arbitrary command execution on susceptible devices.
CVE-2023-20118 is leading to a webshell installation.
Associated vulnerability
CVE-2023-20118Related vulnerabilities
Meta
[ { ref: [ "https://blog.sekoia.io/polaredge-unveiling-an-uncovered-iot-botnet/", "https://securityscorecard.com/wp-content/uploads/2025/02/MassiveBotnet-Report_022125_03.pdf", ], }, ]