Mirai Botnet Exploits Critical Edimax IC-7100 Camera Vulnerability (CVE-2025-1316)

- Reported on March 17, a critical unpatched security flaw (CVE-2025-1316) in the Edimax IC-7100 network camera is being exploited by threat actors to deploy Mirai botnet variants since at least May 2024. - The vulnerability, a command injection flaw, allows remote code execution via a crafted request targeting the `/camera-cgi/admin/param.cgi` endpoint, often using default credentials (admin:1234). The compromised devices are recruited into botnets to launch DDoS attacks, alongside other vulnerabilities like CVE-2024-7214 and CVE-2021-36220. - Edimax has stated it will not release a patch, advising users to upgrade, change passwords, and restrict internet exposure. Akamai warns that Mirai-based botnets persist due to outdated firmware and readily available exploitation tools.