The National Institute of Standards and Technology (US Government) lists a vulnerability in GL.iNet GL-AR300M firmware. See here.
In view of this, I have three questions:
- What assurances doe we have as customers that later or other versions of GL.iNet firmware and/or software don’t have similar vulnerabilities and or backdoors?
- What assurances do we have that GL.iNet is not an instrument of the Chinese Government, aka the Communist Party of China?
- What interdependent testing with publicly available reports, has there been of GL.iNet products from a security perspective?