Security News > 2021 > February > Router Security

This report is six months old, and I don't know anything about the organization that produced it, but it has some alarming data about router security.

Many routers are powered by very old versions of Linux.

To sum it up, our analysis shows that there is no router without flaws and there is no vendor who does a perfect job regarding all security aspects.

You can walk into a store today and buy a brand new router powered by software that's almost 10 years out of date! This outdated version of the Linux kernel has 233 known security vulnerabilities registered in the Common Vulnerability and Exposures database.

The average router contains 26 critically-rated security vulnerabilities, according to the study.

Most routers are designed offshore, by third parties, and then private labeled and sold by the vendors you've heard of.

News URL

https://www.schneier.com/blog/archives/2021/02/router-security.html