{"uuid": "9fd019c6-b2d5-454c-88b2-2c693681e47f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "title": "PolarEdge Botnet Exploits Cisco and Other Flaws to Hijack ASUS, QNAP, and Synology Devices", "description": "French cybersecurity company Sekoia observed the unknown threat actors deploying a backdoor by leveraging CVE-2023-20118 (CVSS score: 6.5), a critical security flaw impacting Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers that could result in arbitrary command execution on susceptible devices.\n\nCVE-2023-20118 is leading to a webshell installation.", "description_format": "markdown", "vulnerability": "CVE-2023-20118", "creation_timestamp": "2025-03-03T21:30:27.513197+00:00", "timestamp": "2025-03-03T21:30:27.513197+00:00", "related_vulnerabilities": ["CVE-2023-20118"], "meta": [{"ref": ["https://blog.sekoia.io/polaredge-unveiling-an-uncovered-iot-botnet/", "https://securityscorecard.com/wp-content/uploads/2025/02/MassiveBotnet-Report_022125_03.pdf"]}], "author": {"login": "cedric", "name": "C\u00e9dric Bonhomme", "uuid": "af0120d0-3dac-4a6a-974b-a9f33d2a9846"}}