Security News > 2020 > June > IBM Discloses Tenda Powerline Extender Flaws Apparently Ignored by Vendor
IBM has disclosed the details of several vulnerabilities found in powerline extenders made by China-based networking solutions provider Tenda.
IBM says Tenda ignored its emails and phone calls, and it's unclear if any patches are being developed.
Researchers at IBM's X-Force Red team have analyzed Tenda PA6 Wi-Fi powerline extenders, which are part of the company's PH5 Powerline Extender Kit, and identified vulnerabilities that could allow attackers to take complete control of a device.
A third security hole found by IBM researchers is a denial-of-service vulnerability that can be exploited without authentication to cause a device to continuously reboot.
IBM says it has attempted to report its findings to Tenda, but the vendor ignored its phone calls and emails, which is why it's unclear if the company is working on releasing patches.