Home United States USA — software D-Link will not fix a critical vulnerability in discontinued NAS devices

D-Link will not fix a critical vulnerability in discontinued NAS devices

81
0
SHARE

A recently disclosed security vulnerability impacting D-Link NAS devices will remain unpatched, as the Taiwanese manufacturer confirmed these models have reached their end-of-life / end-of-service status. This.
Facepalm: Microsoft occasionally releases rare, out-of-band security updates for its older operating systems when a vulnerability is particularly severe. In contrast, companies like D-Link seem content to leave former users exposed to potentially disastrous network security risks.
A recently disclosed security vulnerability impacting D-Link NAS devices will remain unpatched, as the Taiwanese manufacturer confirmed these models have reached their end-of-life / end-of-service status. This means they are likely to stay permanently vulnerable, a situation that has raised concerns among security analysts.
The vulnerability, tracked as CVE-2024-10914, affects the DNS-320, DNS-320LW, DNS-325, and DNS-340L NAS systems with firmware up to version 20241028.

Continue reading...