ON
← Back to feed
Root vulnerabilities in alternative router firmware OpenWRT have been closed
Germany🏛️ Politics2 days ago

Root vulnerabilities in alternative router firmware OpenWRT have been closed

The open-source router firmware OpenWRT has released an updated version addressing several critical security vulnerabilities, including a high-risk flaw in the LuCI web interface. The vulnerability, which could allow attackers to execute arbitrary code with root privileges if the Tailscale VPN service is installed, was rated with a CVSS score of 9.9 out of 10. Developers have patched these issues and improved compatibility, optimized network protocols, and upgraded the Linux kernel. While they advise users to update promptly, there is currently no indication of active attacks exploiting these flaws.

Go to the primary sources (1)

The official sources this coverage is built on. Read them directly to bypass framing.

1 reports

heise online logoheise onlineIndependentCenterFactual 85Objective 702 days ago
Root vulnerabilities in alternative router firmware OpenWRT have been closed

The open-source router firmware OpenWRT has released an updated version addressing several critical security vulnerabilities, including a high-risk flaw in the LuCI web interface. The vulnerability, which could allow attackers to execute arbitrary code with root privileges if the Tailscale VPN service is installed, was rated with a CVSS score of 9.9 out of 10. Developers have patched these issues and improved compatibility, optimized network protocols, and upgraded the Linux kernel. While they advise users to update promptly, there is currently no indication of active attacks exploiting these flaws.

Bias read (Center): The article presents technical information about security patches and updates without overt ideological framing. It focuses on factual developments within the open-source community and does not take a partisan stance toward any political entity or ideology.

Why these scores (Factual 85 · Objective 70): The article accurately reports the critical security fixes in OpenWrt 25.12.5, including the high-severity vulnerability in LuCI related to Tailscale. It references the GitHub source but uses some less precise phrasing like 'CVSSS Score' instead of 'CVSS score'. The tone is somewhat alarmist, sugges

Keep the news honest.

ObjectiveNews is reader-funded and ad-free — we show you the bias instead of hiding it. Support independent journalism for €5/month.

Become a Supporter

Related stories