One of the most popular computers in Spain to connect to the Internet is subject to a vulnerability. This is the HGU model and is affected by a Cross-Site-Scripting type failure, XSS. An attacker could gain access to your connected devices.
The exact model that is suffering from this vulnerability is the HGU RTF8115VW, built by the company Askey. It is the most recent equipment and is the one that is delivered to those users who contract fiber with Movistar or its subsidiary, O2.
this vulnerability is that an attacker could access your computer in order to execute malicious code. Access would be achieved by having the victim accidentally visit the URL that leads to this router failure. If there is a success story, we leave the door open for malware to sneak in, break into our devices or steal information.
To date, no update has been released that fixes this bug. Something we will have to hurry to do as soon as the new firmware is published.
this vulnerability can be traced in the link at the end of this article, a problem that, apparently, has been in force since last February.
Link to CVE-2021-27403: Click here