A total of 226 potential security defects were identified in nine Wi-Fi routers from known manufacturers as part of a study performed by IoT Inspector security researchers.

The TP-Link Archer AX6000 router was the most impacted, with a total of 32 security issues identified. Next in line was Synology RT-2600ac, with 30 bugs, followed by Netgear Nighthawk AX12 with 29 vulnerabilities, and D-Link DIR-X5460 with 26 flaws.

The published analysis also identified 25 security errors in Asus ROG Rapture GT-AX11000, 25 more in Edimax BR-6473AX, 21 in Linksys Velop MR9600, 20 in AVM FritzBox 7530 AX, and 18 in AVM FritzBox 7590 AX.

Some of the most important issues include the use of an outdated kernel in all of the analyzed firmware versions, use of outdated multimedia and VPN functions, the use of insecure communication protocols and certificates, and the presence of passwords in plaintext.

All of the manufacturers were notified about the findings, with most already fixing some of the more important bugs and in the process of addressing the rest.

Researchers also advise users to change passwords, ensure devices have automatic updates, and disable unnecessary router functions.

Source: securityweek.com