Resources
>
Blog
>
Pwn2Own: IoT Inspector Research Lab uncovers vulnerabilities in Cisco router

Pwn2Own: IoT Inspector Research Lab uncovers vulnerabilities in Cisco router

Pwn2Own: IoT Inspector Research Lab uncovers vulnerabilities in Cisco router
Sara Fortmann
Sara Fortmann
Senior Marketing Manager
November 10, 2021
1
 min read
TablE of contents
Internationally renowned competition 

READY TO UPGRADE YOUR RISK MANAGEMENT?

Make cybersecurity and compliance efficient and effective with ONEKEY.

Book a Demo
At this year's Pwn2Own competition, our team from the IoT Inspector Research Lab successfully identified three previously unknown vulnerabilities in the Cisco RV340 router, thereby gaining control over the device (remote code execution via authorization bypass and command injection).   By exploiting these vulnerabilities, attackers could gain access to corporate networks and spy on sensitive data, for example. This popular business router is used by thousands of companies all over the world.  All details will be published after the standardized 90-day disclosure period, during which the manufacturer has the opportunity to fix the vulnerabilities.  Big up to the IoT Inspector Research Lab for their great success! 

Internationally renowned competition 

Pwn2Own is one of the most renowned hacker competitions in the world. It is organized by the Zero Day Initiative and has been held bi-annually since 2007.  Participants are invited to uncover new vulnerabilities in common software and wireless devices. For this year's event, 22 participants submitted 58 hacks – more than ever before. Many manufacturers cooperate with the renowned hack event and voluntarily put their devices up for attacks to improve the security of their products. 
Picture Credit: zerodayinitiative.com
Share

About Onekey

ONEKEY is the leading European specialist in Product Cybersecurity & Compliance Management and part of the investment portfolio of PricewaterhouseCoopers Germany (PwC). The unique combination of the automated ONEKEY Product Cybersecurity & Compliance Platform (OCP) with expert knowledge and consulting services provides fast and comprehensive analysis, support, and management to improve product cybersecurity and compliance from product purchasing, design, development, production to end-of-life.

CONTACT:
Sara Fortmann
Senior Marketing Manager
sara.fortmann@onekey.com

euromarcom public relations GmbH
team@euromarcom.de

RELATED BLOG POST

Understanding the EU Cyber Resilience Act and achieve product cybersecurity compliance with ONEKEY’s whitepaper
Blog
Feb 6, 2023
3
 min read

Understanding the EU Cyber Resilience Act and achieve product cybersecurity compliance with ONEKEY’s whitepaper

ONEKEY Whitepaper: Enhance EU CRA compliance. Streamline supply chain risk management & automate compliance controls for secure device market. Download now!

Read More
EU Cyber Resilience Act: What to watch out for now
Blog
Jan 15, 2023
8
 min read

EU Cyber Resilience Act: What to watch out for now

Stay informed & stay protected with our blog on the EU Cyber Resilience Act. Learn what the new regulation means for your business & how to stay compliant.

Read More
Reducing Common Vulnerabilities and Exposures (CVEs) in Software Development
Blog
Jan 15, 2023
8
 min read

Reducing Common Vulnerabilities and Exposures (CVEs) in Software Development

Stay informed & stay protected with our blog on the EU Cyber Resilience Act. Learn what the new regulation means for your business & how to stay compliant.

Read More

Ready to automate your Product Cybersecurity & Compliance?

Make cybersecurity and compliance efficient and effective with ONEKEY.

Book a Demo