KCodes NetUSB bug exposes millions of routers to RCE attacks

  • Thread starter Deleted member 108694
  • Start date

Deleted member 108694

SentinelOne discovered a vulnerable code segment in the kernel module that doesn't validate the size value of a kernel memory allocation call, resulting in an integer overflow.The router vendors that use vulnerable NetUSB modules are Netgear, TP-Link, Tenda, EDiMAX, Dlink, and Western Digital.

Staff online