6 matches found
CVE-2022-27226
A CSRF issue in /api/crontab on iRZ Mobile Routers through 2022-03-16 allows a threat actor to create a crontab entry in the router administration panel. The cronjob will consequently execute the entry on the threat actor's defined interval, leading to remote code execution, allowing the threat...
IRZ Mobile Router Remote Code Execution (CVE-2022-27226)
A remote code execution vulnerability exists in IRZ Mobile Router. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
New EnemyBot DDoS Botnet Borrows Exploit Code from Mirai and Gafgyt
A threat group that pursues crypto mining and distributed denial-of-service DDoS attacks has been linked to a new botnet called Enemybot, which has been discovered enslaving routers and Internet of Things IoT devices since last month. "This botnet is mainly derived from Gafgyt's source code but h...
iRZ Mobile Router - CSRF to RCE
Exploit Title: iRZ Mobile Router - CSRF to RCE Google Dork: intitle:"iRZ Mobile Router" Date: 2022-03-18 Exploit Author: Stephen Chavez & Robert Willis Vendor Homepage: https://en.irz.ru/ Software Link: https://github.com/SakuraSamuraii/ez-iRZ Version: Routers through 2022-03-16 Tested on: RU21,...
CVE-2022-27226
CVE-2022-27226 affects iRZ Mobile Routers. A CSRF flaw in /api/crontab enables a threat actor to insert a crontab entry in the router Admin panel, causing the defined cronjob to run and leading to remote code execution with filesystem access. The issue can also enable RCE if default credentials a...
CVE-2022-27226
creationtimestamp| type| source ---|---|--- 2022-03-19 00:56:19+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/1682 2022-03-19 10:19:43+00:00| seen| https://t.me/cibsecurity/39290 2022-03-20 08:01:01+00:00| published-proof-of-concept| https://t.me/BlueRedTeam/1818 2022-03-20...