Government-run Cert-In issues alerts on a security flaw in TP-Link modems and advises users to protect their devices by following certain steps.
The Indian Computer Emergency Response Team (CERT-In) has announced an urgent advisory regarding a critical security flaw found in TP-Link routers. This Chinese brand is extensively used across India’s internet infrastructure, for wireless internet connection. The Central Government-run agency has recommended immediate patching of affected models to prevent possible cyber-attacks.
However, it has highlighted this significant threat that may not be immediately obvious to many users. According to the advisory, the specific flaw affects TP-Link Archer models released before version C5400X(EU)_V1_1.1.7 Build 20240510. It could enable remote hackers to run unauthorised code with elevated privileges on the impacted system.
The problem stems from not properly handling certain parts of a file named “rf test.” This binary lets a network service open to unauthenticated commands that could be injected. CERT-In explains if this issue is exploited, attackers from far away can run commands with high access to the system without the requirement of a login.
According to the published statement, the current vulnerability could endanger user data by allowing hackers to infiltrate the system undetected. This could result in accessing users’ sensitive information such as banking details, login credentials, and other personal data, leading to severe privacy breaches.
Addressing this potential threat, CERT-In has prescribed immediate patching of TP-Link routers. Users may also take proactive steps to secure their Wi-Fi networks like keeping router firmware updated with the latest security patches and changing default login credentials to avoid common exploitation. Additionally, using strong encryption like WPA3 or WPA2 for data protection has been advised, besides disabling remote management to prevent unauthorised access to router settings.
CERT-In is known for quickly identifying security vulnerabilities in popular software and devices, from companies like Microsoft, Apple, Google, and Mozilla. From time to time, it issues advisories for users and alerts them on potential threats.