G Richter, a security researcher at Pen Test Partners discovered multiple vulnerabilities 4G routers manufactured by different vendors.
The issue includes information leak flaws and code execution vulnerabilities. The expert presented the vulnerabilities in a talk at the DEF CON hacking conference, demonstrating that many existing 4G modems and routers are insecure.
“The problem is, a lot of existing 4G modems and routers are pretty insecure. We found critical remotely-exploitable flaws in a selection of devices from
The experts analyzed a set of 4G routers that included both
“In our little research project, we focused mainly on attacking services on the IP layer. We’ve reported everything we found
“In increasing numbers, lots of less-bandwidth-demanding consumers are inevitably going to start using cellular for their full-time Internet access,”
Discovered issues were reported to the vendors, fortunately, most of them quickly fixed the vulnerabilities.
The experts criticized the approach of ZTE that refused to address the vulnerabilities discovered in the MF910 and MF65+ routers because they are end-of-life products.
The vulnerabilities include the leak of the administrator password, a command injection issue and a Cross-Site Scripting in an unused “test” page.
“The ZTE MF910 is a really interesting router for reversing, mainly because it’s full of nice debug calls, and
“This post gives a bit of a rundown of the debug functionality and bugs we found in the ZTE MF910. The same (or similar) API calls might be found in other ZTE MF* series routers. We’re not entirely sure, because ZTE
ZTE only addressed the flaws in the MF920 routers that shared the same with the above devices. The experts explained that the vulnerabilities could be chained to gain arbitrary code execution on vulnerable devices
Below two vulnerabilities discovered in the MF920 ZTE 4G router:
The researcher also found security vulnerabilities in 4G routers manufactured by Netgear and TP-LINK. The flaws include a
“Those manufacturers who are going to be selling 5G routers are currently selling 3G and 4G routers. Which – and I really cannot stress this enough – are mainly bad.”
Other details are included in the analysis published by the experts.