Discovery of two vulnerabilities in Netcomm and TP-Link WR710N routers

Discovery of two vulnerabilities in Netcomm and TP-Link WR710N routers

Security researchers to novelty New vulnerabilities have been discovered in TP-Link WR710N and Netcomm routers, and the degree of danger of some of these bugs has also been reported as high. These security flaws, which are tracked as CVE-2022-4873 and CVE-2022-4874, are related to buffer overflow and authentication bypass in Netcomm routers models NF20MESH, NF20 and NL1902.

Buffer overflow happens when the program tries to save more than the amount of memory allocated to it in the data memory, and the buffers of routers often have a certain and limited amount of space, and mostly when the router cannot send network packets to They store data in a limited and temporary way in a very short time to reduce packet loss during high performance and network congestion with this buffering method.

In this regard, it is reported that when these two vulnerabilities are used together, remotely, they allow hackers to execute malicious codes on the device. In this regard, researchers have pointed out that the cyber attacker can first gain access to the damaged device and then use this router as a way to enter other network computers or even reach the goal of disrupting the service.

Vulnerability of TP-Link WR710N

In addition to the above two vulnerabilities related to Netcomm routers, researchers also reported two unpatched security vulnerabilities in TP-Link WR710N-V1-151022 and Archer-C5-V2-160201 routers that could lead to information disclosure and code execution. be remote.

These two vulnerabilities are tracked as CVE-2022-4499 and CVE-2022-4498 and were discovered in 2022. According to the researchers, the CVE-2022-4499 vulnerability also provides a side attack method to target the scripted function that validates a user’s username and password to login to the router. Two recent bugs in TP-Link routers were discovered by Microsoft security researcher James Hull.

  • Discovery of a new UEFI BIOS vulnerability in Lenovo laptops
  • Successful testing of Comcast’s 10G home connection using common equipment
  • Unveiling the Asus ROG Rapture GT-BE98 WiFi 7 router with 4-band support

More Similar Posts

Leave a Reply

Your email address will not be published. Required fields are marked *

Fill out this field
Fill out this field
Please enter a valid email address.
You need to agree with the terms to proceed

Most Viewed Posts