TP-Link failed to patch a vulnerability in its routers for more than a year.

Navigazione
- Categorie
- Recenti
- Mondo
- Ultime miste
- Tag
- Popolare
- Utenti
- Gruppi
- Preferiti
Account
- Registrati
- Accedi

Navigazione
- Categorie
- Recenti
- Mondo
- Ultime miste
- Tag
- Popolare
- Utenti
- Gruppi
- Preferiti
Account
- Registrati
- Accedi

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

TP-Link failed to patch a vulnerability in its routers for more than a year.

Pianificato Fissato Bloccato Spostato
Senza categoria

1 1 0

C
123

0

C

campuscodi@mastodon.social

TP-Link failed to patch a vulnerability in its routers for more than a year.
The bug is in a protocol that allows ISPs to manage routers deployed at customer premises, also known as CWMP or TR-069.
TP-Link was notified of the bug in May last year.

ZERO-DAY ALERT: Automated Discovery of Critical CWMP Stack Overflow in TP-Link Routers

This article documents a zero-day vulnerability discovered through automated analysis and reported to TP-Link on May 11th, 2024. The vulnerability remains unpatched at the time of publication, making…

Medium (medium.com)
0
C cybersecurity@poliverso.org ha condiviso questa discussione