• Home
  • router
  • What is the "disappointing" wireless LAN router where a large amount of vulnerabilities have been found in a professional survey?: Vulnerability discovered for 9 models for SOHO
18 Dec, 2022

What is the "disappointing" wireless LAN router where a large amount of vulnerabilities have been found in a professional survey?: Vulnerability discovered for 9 models for SOHO

According to Lukafusky, the vulnerabilities found are found in old components and functions, including the wireless LAN routers to be investigated.The wireless LAN router to be investigated did not have the latest "Linux" kernel or VPN (virtual private network) function.These old components and functions are likely to be abused and can be the entrance to the attack.

It turned out that the wireless LAN routers to be investigated were easy to guess as the default password.End users in ordinary households and small offices tend to use default passwords as they are, so the risk of security is likely to increase."Some wireless LAN routers were using non -encrypted network connections," said IoT Inspector and CHIP survey teams.

プロ調査で脆弱性が大量に見つかってしまった“残念”な無線LANルーターとは?:SOHO向け9機種に脆弱性発見

IoT Inspector explains that the D-Link wireless LAN router had a vulnerability that the attacker could use to steal the firmware encryption key.After reporting this vulnerability to D-Link, IoT Inspector explains that the vendor has quickly released a correction program.

The wireless LAN routers, which had a particular vulnerability in this survey, were TP-Link's "Archer AX6000" (32 vulnerabilities) and Synology's "Synology Router RT2600AC" (30 vulnerabilities).Synology received a survey result and released a security patch of all products of the company, not limited to wireless LAN routers."It can be read that vendors are sensitive to security," said Lucafusky.

However, the responsibility to check the firmware and confirm that the latest version is running is in the wireless LAN router administrator of the user company.This time, the wireless LAN router administrator, whose vulnerability has been found, will need to apply the update program immediately if the firmware automatic update function is not enabled.

We will carefully select the latest technical explanations, products comparison in the focusing fields, and IT products introduction of IT products from overseas companies from abundant articles in TechnoRget in the United States.

Prev Next