October 12, 2023 at 07:39AM
Chinese company Yifan’s industrial routers are vulnerable to critical security flaws, according to Cisco’s Talos. Yifan was given 90 days to release patches, but none have been issued. The flaws can allow attackers to execute arbitrary commands, change admin credentials, and access devices with admin privileges. All vulnerabilities can be exploited through specially crafted network requests. Yifan has been contacted for comment.
Meeting takeaways:
– Chinese company Yifan’s industrial routers have several critical vulnerabilities that can expose organizations to attacks.
– Cisco’s Talos threat intelligence and research group discovered these vulnerabilities and notified Yifan in June.
– Despite being given more than 90 days to release patches, Yifan has not released any fixes.
– Talos has made the technical details public in accordance with vulnerability disclosure policy.
– Yifan’s YF325 cellular router, deployed in various fields, is affected by the vulnerabilities.
– Most of the vulnerabilities are classified as ‘critical severity’, while the rest are ‘high severity’.
– The security holes can be exploited for arbitrary code/command execution, denial-of-service attacks, and gaining unauthorized access with admin privileges.
– Specially crafted network requests can be used to exploit these vulnerabilities.
– Yifan has been approached for comment by SecurityWeek.