PLEASE NOTE: As of March 2021, we are looking exclusvly for WAN vulnerabilities for the products below.

This page will be updated once LAN vulnerabilities are once again eligible.

Routeres are networking devices that forward data packets between computer networks. Routers perform the traffic directing functions on the Internet. Data sent through the internet, such as a web page or email, is in the form of data packets.  A router is connected to two or more data lines from different IP networks. When a data packet comes in on one of the lines, the router reads the network address information in the packet header to determine the ultimate destination. Then, using information in its routing table or routing policy, it directs the packet to the next network on its journey.

Popular uses:  Routers may provide connectivity within enterprises, between enterprises and the Internet, or between internet service providers’ (ISPs’) networks. The largest routers interconnect the various ISPs, or may be used in large enterprise networks. Smaller routers usually provide connectivity for typical home and office networks.

Tenda Founded in 1999, Tenda technology is the recognized leading supplier of networking devices and equipments. Tenda has committed to delivering easy-to-install and affordable networking solutions, offering innovative, cutting-edge routers.

ASUS manufactures a series of network routers directly competing with Linksys routers from Belkin. The Asus series of routers usually ship with Broadcom chipsets, faster processors and more memory than average, removable antennas, and USB ports for expansion.

D-Link is an award-winning designer, developer and manufacturer of networking, broadband, digital electronics, voice, data and video communications solutions for the digital home. D-Link has a range of Routers to meet your everyday needs for home and small business.


Routers provide connectivity and communication between devices on a company’s network and the interet.  Getting access to a routers may provide an attacker a current map of the company’s environment, without risking detection by running their own scans, which may put a firms’ entire operation vulnerable and at risk.

Previously, we had identified various vulnerabilities in routers such as an Mimosa Privilege Escalation and Authentication bypass or a Netgear Nighthawk R8300 upnpd PreAuth RCE alongside many others, with a potential risk for the systems and its users.

Think you figured out how to perform RCE in routers? Found a Tenda/ D-Link / Asus vulnerability and don’t know what to do next? Let us be your guides!