Your upgrade Wireless router It’s definitely a good idea if you’re doing with a new model from Amazon work remotely But new research from Cyber News Revealed that one of TP-Link’s most popular routers, which is frequently featured in e-commerce giant stores, comes with vulnerable firmware.
Based in Shenzhen TP-Link Is the world’s number one manufacturer of consumer WiFi networking products, selling 150 million devices annually and boasting a 42% share of the global consumer WLAN market. The company’s routers are often awarded the “Amazon’s Choice” badge in Amazon’s “WiFi Routers” category.
The TP-Link AC1200 Archer C50 (v6) is the UK’s best-selling “Amazon’s Choice” Wi-Fi router, mainly sold in the European market, but another version is available at Amazon’s online store in the US. You can get it.
During the investigation of this router Cyber News Numerous flaws have been found in the default firmware and web interface.For this reason, the press is all TP-Link AC1200 Archer C50 (v6) The owner will upgrade the device to the latest firmware as soon as possible.
Known flaws in the default firmware
according to Cyber NewsThe TP-Link AC1200 Archer C50 (v6) comes with older firmware that is vulnerable to dozens of known security flaws. WPS Also, because it is enabled by default on the device, an attacker could brute force the router, but the administrator credentials and configuration backup file use a weak protocol that can be easily compromised. Will be encrypted.
At the same time, the default version of the Router Web Interface app has several bad security practices and vulnerabilities, including: Clickjacking, Character set mismatch, cookie slack, private IP disclosure, weak HTTPS encryption, etc.
Thankfully, most of these flaws are currently patched, Cyber News Some point out that the patch was applied only in the middle. For example, router backends appear to be protected so that an attacker could find an entry point in a web interface and reuse a previously known flaw.
Cyber News When I contacted TP-Link to inform them of the discovery, they said they would force firmware updates on the affected devices and the owner would receive “related notifications” about these updates via the management interface.
The lesson here is to ensure that you take the time to buy a new device, even if you may have purchased a new device from Amazon or other online or offline retailers. The router has been updated Up-to-date firmware to protect your network and data.
via Cyber News
https://www.techradar.com/news/this-top-tp-link-router-ships-with-some-serious-security-flaws/ This top TP-Link router has some serious security flaws.