DrayTek has patched a vulnerability in its routers.

DrayTek patched a critical remote code execution vulnerability affecting several of its router models. The flaw allowed attackers to execute arbitrary commands without authentication, posing a serious risk to network security. Exploitation could lead to full device compromise, enabling surveillance or further attacks on connected systems.

Read more:

https://www.securityweek.com/unauthenticated-rce-flaw-patched-in-draytek-routers/