Hello and welcome to the Thursday, December 1st, 2022 edition of the Sands and the Stormsendors Stormcast.

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

I just posted a little bit unusual diary.

We published this newsletter once a week, the At Risk newsletter, and I'm looking at

different vulnerabilities. I found something odd this week, looking at sort of last week's

vulnerability. There are 20 war on abilities that were released in Netgear and D-Link

routers. For Netgear, it affects the R7,000P router, different firmware versions, and for D-Link,

it's a number of different devices that are affected, also again, a number of different

firmware versions here.

Problem is, there isn't really anything on the vendor's website about

any patches for it. DeLinks security site actually stops about two years ago. December 2020,

I guess they had no vulnerabilities, at least they had no updates, maybe. Since then, Netgear had

some updates, but nothing really

related to this particular model recently. So not 100% sure what's going on here. All of these

vulnerabilities appear to have been reported by the same individual, and there is a GitHub

repository with proof-of- of concept exploits.

The vulnerabilities do appear to affect pretty much the admin interface.

So it's these typical web application vulnerabilities as far as I can tell,

based on the brief description in the National Vulnerablellies database.

I'll leave it up to you, what to do here, but as usual, don't expose the admin interface, and then be on the lookout for any updates coming down the pipe from Netgear and D-Link.

And talking about mystery updates, Apple today also released an update for iOS.

And now it does fix some bugs.

...