65 vendors made at least 200 IoT devices such as gateways, travel routers, WiFi repeaters, or even wifi connected toys such as digital, ASUSTek, Beeline, Belkin, Buffalo, D-Link, Edimax, Huawei, LG, Logitec, MT-Link, Netis, Netgear, Occtel, PATECH, TCL, Sitecom, TCL, ZTE, Zyxel, and Realtek’s router lineup using three software development kits (SDKs) which has at least four security vulnerability as determined by the Taiwanese chip designer Realtek.
The vulnerabilities in the Realtek SDK v2.x, Realtek “Jungle” SDK v3.0/v3.1/v3.2/v3.4.x/v3.4T/v3.4T-CT, and Realtek “Luna” SDK up to version 1.3.2 can be used by the hackers to compile code at the highest level of prerogative and can be completely compromised by them as the SDKs are accompanied by the WIFI modules.
Researchers found 198 unique fingerprints that are answered over UPnP on various devices. It was estimated that around a million devices were affected by vulnerabilities found on SDKs. According to vendors because of vulnerabilities thousands of end-users can be vulnerable to attackers as manufactures having source code fail to recognize the issues.
The company released the patch for Realtek “Luna” SDK in version 1.3.2a and the users of “Jungle” SDK are recommended to use, to fix the security flaw.
By- Harshita Bansal
Legal Intern, WCSF
Liking our news? Then, “Subscribe” us!!
To know more about us, please visit: https://www.worldcybersecurities.com/