Hello. I sold a pre-auth root RCE 0day to a broker for $5k in BTC (exclusive deal). The target device costs $2k, $10k or $20k depending on the model in addition to $1k annual licensing fees. Thus, these boxes are mostly found in medium to large companies and serve as a edge routers and firewalls. According to Shodan and Censys, there are ~2000 vulnerable devices exposed to the Internet (majority of them in east Asia and India, unfortunately).
Did I get ripped off? How badly? Just wondering because I also found another 100% reliable RCE 0day for the same target device via completely different attack vector. How much should I ask for this second 0day? Or should I just keep it myself for botnetting, ransomware and other research purposes
I prefer not to name the manufacturer of the vulnerable device publicly. Just think something along the lines of Juniper, Cisco, Sonicwall, F5, Palo Alto, ...
Did I get ripped off? How badly? Just wondering because I also found another 100% reliable RCE 0day for the same target device via completely different attack vector. How much should I ask for this second 0day? Or should I just keep it myself for botnetting, ransomware and other research purposes
I prefer not to name the manufacturer of the vulnerable device publicly. Just think something along the lines of Juniper, Cisco, Sonicwall, F5, Palo Alto, ...
