#openwrt
#openwrt

[ follow ]

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

A critical vulnerability in OpenWrt allows malicious firmware distribution through an unchecked build request process.

OpenWrt supply chain attack scare prompts urgent upgrades

"Due to the combination of the command injection in the 'openwrt/imagebuilder' image and the truncated SHA-256 hash included in the build request hash, an attacker can pollute the legitimate image by providing a package list that causes the hash collision."

Information security

[ Load more ]

#openwrt#openwrt

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

OpenWrt supply chain attack scare prompts urgent upgrades

#openwrt
#openwrt