Rich Mirch

I discovered several vulnerabilities in the MoFi4500 LTE router. Several vulnerabilities have not been patched, including an unauthenticated remote command injection and several undocumented backdoors. The full write-up can be viewed at https://www.criticalstart.com/critical-vulnerabilities-discovered-in-mofi-routers/.

Media Coverage

• https://www.cyberscoop.com/mofi-networks-routers-zero-day-critical-start/
• https://www.zdnet.com/article/backdoors-left-unpatched-in-mofi-routers/

Follow the conversation on Twitter

The team is at it again! This time with 10 #0days found by @0xm1rch for routers from @MoFiNetwork. After coordinating with others to reduce impact there still appears to be over 6,860 vulnerable devices externally facing.#Infosec #redteamhttps://t.co/1A1UgRmJrq pic.twitter.com/YKPiF4LFMq

— TeamARES (@TeamAresSec) September 2, 2020