DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

Draytek 3900 Exploit

  • schalk
  • Topic Author
  • User is blocked
  • User is blocked
More
07 Mar 2023 09:28 #1 by schalk
Draytek 3900 Exploit was created by schalk
There is talk of a new exploit on the 3900 an 2960 Routers and I note there is no update to the firmware since 1.5.1.4 in May 2022

https://www.bleepingcomputer.com/news/security/new-malware-infects-business-routers-for-data-theft-surveillance/

Does anyone one know if firmware 1.5.1.4 is vulnerable to this exploit

Please Log in or Create an account to join the conversation.

More
09 Mar 2023 17:05 #2 by haywardi
Replied by haywardi on topic Re: Draytek 3900 Exploit
That's a good question.

Draytek?
Iain

Please Log in or Create an account to join the conversation.

  • fchef
  • User is blocked
  • User is blocked
More
10 Mar 2023 07:45 #3 by fchef
Replied by fchef on topic Re: Draytek 3900 Exploit
The Draytek UK has no response???

Please Log in or Create an account to join the conversation.

More
10 Mar 2023 17:01 #4 by pharcyder
Replied by pharcyder on topic Re: Draytek 3900 Exploit
Well you won't get a response from them here.

I can't see anything on their UK or TW websites but you could keep an eye on here:

https://www.draytek.com/about/security-advisory/

You could also raise a ticket with support. I've heard it doesn't affect the DrayOS products but that's hearsay at the moment.

Please Log in or Create an account to join the conversation.

More
14 Mar 2023 15:03 #5 by pharcyder
Replied by pharcyder on topic Re: Draytek 3900 Exploit
Finally some detail from Draytek AU

https://www.draytek.com.au/security-advisory-new-video-and-firmware-for-draytek-products-13-mar-2023/


Still nothing from UK and TW

Please Log in or Create an account to join the conversation.