A 12-year-old security vulnerability may be affecting routers built by “dozens of manufacturers”, exposing millions of users worldwide.
According to researchers from security firm Tenable, the CVE-2021-20090 vulnerability made its way into modern routers due to the reusing of old (and insecure) software code.
The experts believe it could affect at least 20 different devices across 17 different vendors, including Internet Service Providers (ISP) in Argentina, Australia, Canada, Germany, Japan, Mexico, Netherlands, New Zealand, Russia, Spain, and the US.