this post was submitted on 18 Dec 2024
323 points (97.9% liked)
Technology
60112 readers
2202 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Someone in the comment section posted a good question. Which specific routers that TP-Link makes are the issue?
Is it all routers that they make or is this just because they are selling inexpensive routers that have become a large part of the US market?
Does someone have an article that isn’t biased one way or the other that gives a list of effected routers ?
They are presumably talking about CovertNetwork-1658 and the reason there's no list of routers is because no one has publicly described the vulnerability that is being leveraged.
My guess is that the vulnerability is present on most of their routers. I'm basing that opinion on the fact that previous CVEs issues against TP-LINK have impacted their most popular product lines like Archer and Deco.
It's possible that this is related to CVE-2024-21833 which was open in January of 2024, update in July of 2024, then updated again in late November of 2024.
We're literally inside an imperial core.
If there was a list of effected routers, TP-Link would most likely have patched them.
Most likely old routers still sold on Amazon instead of the latest WiFi 7 models on the website~
Why would you assume that? They probably all use the same base.
TP-Link is popular because of their cheap options while easy-to-setup for average joe families.
Right, but I'm not seeing a reason that only the older routers would have these vulnerabilities. I'm guessing the base OS for all of them is quite similar.
Well, they also don’t offer more than 2 updates on their proprietary software… so you can just categorise them as vintage or out of service like Apple especially for even older hardware that’s $20 or less like Tenda which is also another Chinese brand.
They don't care. They want to ban TP-Link as a company, routers are just an excuse.
This is the same people that keep blocking US gdpr legislation, so we know for a fact they don't care about us, they just care about not being able to spy themselves.