SmartStateIndia
Reports

Decade-Old Router Flaw Highlights Risk of Reused Vulnerable Software Code, According to Tenable Research

Tenable Research

Tenable highlighted the security challenges of manufacturers reusing vulnerable software code, particularly for consumer devices. It follows Tenable Research’s discovery of a 12-year-old vulnerability [CVE-2021-20090], that has potentially left millions of home routers exposed, across 11 countries and dozens of manufacturers.

As the gateway to the internet, consumers use home routers to access a wealth of online content. This includes sharing personal information with online businesses and services, interacting with friends on social media, and even streaming TV channels and box sets. If exploited, this vulnerability could potentially allow attackers to compromise not only the router but any device connected to it.

Given the current trend of remote, home-based workforces, this not only impacts consumers but has the potential to expose organisations to further risk.

“Consumers shouldn’t have to worry whether the device provided to them by their ISP is secure or vulnerable to attack,” explained Evan Grant, staff research engineer at Tenable. “We’re reliant on providers to sell quality equipment that’s secure by design. Hopefully, the vendors affected by this vulnerability will take steps to mitigate the impact of these vulnerabilities on their products and customers.”

To date, 20 routers and modems across 17 different vendors have been identified, including Internet Service Providers (ISPs) used in Argentina, Australia, Canada, Germany, Japan, Mexico, Netherlands, New Zealand, Russia, Spain, and the US.

Related posts

Healthcare Organizations in Asia/Pacific are Planning to have Increased IT Spend to Prepare for the Next Normal: IDC

SSI Bureau

AI and Cloud Transformation Dominates 2024 IT Investment Priorities: Rackspace Technology Survey

SSI Bureau

Recognize’s CIO market study reveals 73% of organisations in the US foresee an increase in their IT spends in 2024

SSI Bureau

Leave a Comment

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More