The Indian Computer Emergency Response Team (CERT-In) has issued an important security warning for some D-Link Wi-Fi routers. The government body has issued an advisory on its official website about newly found security flaws in D-Link Wi-Fi routers.
According to the advisory, these new vulnerabilities can compromise the network security and end up stealing sensitive information from users' devices by executing a remote attack.
Affected D-Link router
As per the report, the newly found security flaw is affecting the D-Links DIR-846W Wi-Fi router.
Why this vulnerability exists
In the advisory, the government body has stated that these vulnerabilities in the mentioned D-Link router exist due to “tomography_ping_address parameter in /HNAP1/ interface, issues in keys smartqos_express_devices and smartqos_normal_devices in SetSmartQoSSettings, lan(0)_dhcps_staticlist, and wl(0). (0)_ssid parameters.
“Successful exploitation of these vulnerabilities could allow the attacker to execute remoter code execution on an affected system, the report adds.
What users can do?
Well, CERT-In has also advised a probable solution is to overcome the security flaw within the D-Link router. As per the report, The DIR-846, all hardware revisions, has reached their End of Life ("EOL") /End of Service Life ("EOS") Life-Cycle. Users are advised to apply appropriate recommendations as mentioned in the advisory issued by D-Link officially.
Simply put, users are supposed to download and install the latest firmware containing the fix for the said security flaw.
Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!
