{"id":2233,"date":"2020-12-02T13:45:58","date_gmt":"2020-12-02T06:45:58","guid":{"rendered":"https:\/\/cdcangiang.vn\/?p=2233"},"modified":"2023-03-08T09:27:53","modified_gmt":"2023-03-08T02:27:53","slug":"draytek-lien-tuc-dinh-lo-hong-bao-mat-nghiem-trong","status":"publish","type":"post","link":"https:\/\/cdcangiang.vn\/index.php\/2020\/12\/02\/draytek-lien-tuc-dinh-lo-hong-bao-mat-nghiem-trong\/","title":{"rendered":"Draytek li\u00ean t\u1ee5c d\u00ednh l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt nghi\u00eam tr\u1ecdng"},"content":{"rendered":"\n<p>13:50:00 &#8211; Th\u1ee9 6, 27\/11\/2020 | <a href=\"http:\/\/www.antoanthongtin.vn\/lo-hong-attt\">L\u1ed6 H\u1ed4NG ATTT<\/a><\/p>\n\n\n\n<p><strong>V\u1edbi vi\u1ec7c li\u00ean ti\u1ebfp ph\u00e1t hi\u1ec7n c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt nghi\u00eam tr\u1ecdng, Nh\u00e0 s\u1ea3n xu\u1ea5t thi\u1ebft b\u1ecb m\u1ea1ng v\u00e0 h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00fd Draytek \u0111\u00e3 ph\u00e1t h\u00e0nh kh\u1ea9n c\u1ea5p b\u1ea3n c\u1eadp nh\u1eadt firmware cho c\u00e1c thi\u1ebft b\u1ecb c\u1ee7a m\u00ecnh.<\/strong><\/p>\n\n\n\n<p>DrayTek l\u00e0 nh\u00e0 s\u1ea3n xu\u1ea5t thi\u1ebft b\u1ecb m\u1ea1ng v\u00e0 h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00fd c\u00f3 tr\u1ee5 s\u1edf t\u1ea1i \u0110\u00e0i Loan. Hi\u1ec7n nay, nh\u00e0 s\u1ea3n xu\u1ea5t n\u00e0y \u0111ang cung c\u1ea5p thi\u1ebft b\u1ecb cho nhi\u1ec1u doanh nghi\u1ec7p v\u1eeba v\u00e0 nh\u1ecf \u1edf Vi\u1ec7t Nam v\u00e0 c\u1ea3 tr\u00ean th\u1ebf gi\u1edbi. Theo th\u1ed1ng k\u00ea, Vi\u1ec7t Nam c\u00f3 kho\u1ea3ng 2500 thi\u1ebft b\u1ecb \u0111\u1ecbnh tuy\u1ebfn DrayTek Vigor \u0111ang k\u1ebft n\u1ed1i Internet. M\u1eb7c d\u00f9, DrayTek \u0111\u00e3 ph\u00e1t h\u00e0nh b\u1ea3n c\u1eadp nh\u1eadt firmware cho c\u00e1c s\u1ea3n ph\u1ea9m t\u1ed3n t\u1ea1i l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt. Nh\u01b0ng vi\u1ec7c n\u00e2ng c\u1ea5p c\u0169ng kh\u00f4ng d\u1ec5 d\u00e0ng v\u1edbi nhi\u1ec1u t\u1ed5 ch\u1ee9c, \u0111\u01a1n v\u1ecb nh\u1ecf v\u00e0 n\u1ebfu kh\u00f4ng x\u1eed l\u00fd, kh\u1eafc ph\u1ee5c k\u1ecbp th\u1eddi th\u00ec s\u1ebd tr\u1edf th\u00e0nh m\u1ee5c ti\u00eau t\u1ea5n c\u00f4ng c\u1ee7a t\u1ed9i ph\u1ea1m m\u1ea1ng.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Nh\u00f3m l\u1ed7 h\u1ed5ng CVE-2020-10823 ~ CVE-2020-10828<\/strong><\/h4>\n\n\n\n<p>Nh\u00f3m l\u1ed7 h\u1ed5ng \u0111\u1ea7u ti\u00ean \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n c\u00f3 th\u1ec3 cho ph\u00e9p tin t\u1eb7c khai th\u00e1c c\u00e1c ch\u1ee9c n\u0103ng v\u00e0 d\u1ecbch v\u1ee5 tr\u00ean thi\u1ebft b\u1ecb \u0111\u1ecbnh tuy\u1ebfn. \u0110\u01b0\u1ee3c ph\u00e1t hi\u1ec7n t\u1eeb th\u00e1ng 1\/2020, nh\u01b0ng DrayTek \u0111\u1ebfn th\u00e1ng 4\/2020 m\u1edbi ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 cho c\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y. C\u00e1c l\u1ed7 h\u1ed5ng g\u00e2y \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn c\u00e1c thi\u1ebft b\u1ecb Vigor3900\/2960\/300B.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>L\u1ed7 h\u1ed5ng <\/strong><strong>CVE-2020-8515<\/strong><\/h4>\n\n\n\n<p>Trong th\u00e1ng 2\/2020, l\u1ed7 h\u1ed5ng CVE-2020-8515 \u0111\u00e3 \u0111\u01b0\u1ee3c c\u00e1c nh\u00e0 nghi\u00ean c\u1ee9u ph\u00e1t hi\u1ec7n. Theo \u0111\u00f3, tin t\u1eb7c c\u00f3 th\u1ec3 khai th\u00e1c th\u00e0nh c\u00f4ng l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt n\u00e0y v\u00e0 chi\u1ebfm quy\u1ec1n truy c\u1eadp cao nh\u1ea5t. Sau khi ki\u1ec3m so\u00e1t thi\u1ebft b\u1ecb, tin t\u1eb7c c\u00f3 th\u1ec3 r\u00e0 qu\u00e9t, thu th\u1eadp th\u00f4ng tin h\u1ec7 th\u1ed1ng m\u1ea1ng, nghe tr\u1ed9m d\u1eef li\u1ec7u tr\u00ean \u0111\u01b0\u1eddng truy\u1ec1n \u0111\u1ec3 thu th\u1eadp th\u00f4ng tin m\u1ea1ng, th\u00f4ng tin t\u00e0i kho\u1ea3n \u0111\u0103ng nh\u1eadp v\u1edbi c\u00e1c giao th\u1ee9c kh\u00f4ng m\u00e3 h\u00f3a; ch\u1ec9nh s\u1eeda c\u1ea5u h\u00ecnh chuy\u1ec3n h\u01b0\u1edbng truy c\u1eadp m\u1ea1ng nh\u1eb1m c\u00e0i c\u1eafm m\u00e3 \u0111\u1ed9c v\u00e0o c\u00e1c m\u00e1y ch\u1ee7, m\u00e1y tr\u1ea1m b\u00ean trong. Nguy hi\u1ec3m h\u01a1n, tin t\u1eb7c c\u00f3 th\u1ec3 ti\u1ebfp t\u1ee5c m\u1edf r\u1ed9ng t\u1ea5n c\u00f4ng, ki\u1ec3m so\u00e1t h\u1ec7 th\u1ed1ng m\u1ea1ng; thu th\u1eadp t\u00e0i li\u1ec7u n\u1ed9i b\u1ed9, b\u00ed m\u1eadt nh\u00e0 n\u01b0\u1edbc ho\u1eb7c x\u00f3a, m\u00e3 h\u00f3a d\u1eef li\u1ec7u \u0111\u00f2i ti\u1ec1n chu\u1ed9c g\u00e2y thi\u1ec7t h\u1ea1i l\u1edbn cho c\u00e1c c\u01a1 quan, t\u1ed5 ch\u1ee9c.<\/p>\n\n\n\n<p>B\u00ean c\u1ea1nh c\u00e1c thi\u1ebft b\u1ecb \u0111\u1ecbnh tuy\u1ebfn, m\u1ed9t s\u1ed1 thi\u1ebft b\u1ecb chuy\u1ec3n m\u1ea1ch c\u1ee7a DrayTek t\u1ed3n t\u1ea1i l\u1ed7 h\u1ed5ng c\u0169ng d\u1eabn \u0111\u1ebfn nguy c\u01a1 b\u1ecb tin t\u1eb7c t\u1ea5n c\u00f4ng, thay \u0111\u1ed5i c\u1ea5u h\u00ecnh VLAN, cho ph\u00e9p tin t\u1eb7c truy c\u1eadp c\u00e1c ph\u00e2n v\u00f9ng m\u1ea1ng \u0111\u01b0\u1ee3c b\u1ea3o v\u1ec7 trong h\u1ec7 th\u1ed1ng m\u1ea1ng c\u1ee5c b\u1ed9.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter\"><img decoding=\"async\" src=\"http:\/\/quantri.antoanthongtin.gov.vn\/Files\/files\/site-2\/images\/20201118\/firmware1.png\" alt=\"Draytek li\u00ean t\u1ee5c d\u00ednh l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt nghi\u00eam tr\u1ecdng\"\/><\/figure><\/div>\n\n\n\n<p class=\"has-text-align-center\"><em>Danh s\u00e1ch thi\u1ebft b\u1ecb DrayTek b\u1ecb \u1ea3nh h\u01b0\u1edfng b\u1edfi 4&nbsp;l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt&nbsp;<\/em><\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>L\u1ed7 h\u1ed5ng CVE-2020-14472\/CVE-2020-15415<\/strong><\/h4>\n\n\n\n<p>L\u1ed7 h\u1ed5ng \u0111\u01b0\u1ee3c \u0111\u1ecbnh danh CVE-2020-14472\/CVE-2020-15415, ph\u00e1t hi\u1ec7n v\u00e0o th\u00e1ng 4\/2020. \u0110\u00e2y l\u00e0 l\u1ed7 h\u1ed5ng cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 th\u1ef1c thi m\u00e3 t\u1eeb xa. Th\u00e1ng 6\/2020, DrayTek \u0111\u00e3 ph\u00e1t h\u00e0nh b\u1ea3n c\u1eadp nh\u1eadt cho fimware cho c\u00e1c thi\u1ebft b\u1ecb c\u1ee7a m\u00ecnh.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>L\u1ed7 h\u1ed5ng CVE-2020-14473\/CVE-2020-14993<\/strong><\/h4>\n\n\n\n<p>\u0110\u01b0\u1ee3c ph\u00e1t hi\u1ec7n c\u00f9ng th\u1eddi \u0111i\u1ec3m v\u00e0 ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 v\u1edbi l\u1ed7 h\u1ed5ng th\u1ee9 CVE-2020-14472, L\u1ed7 h\u1ed5ng CVE-2020-14473\/CVE-2020-14993 c\u00f3 th\u1ec3 cho ph\u00e9p t\u1ea5n c\u00f4ng tr\u00e0n b\u1ed9 \u0111\u1ec7m d\u1ef1a tr\u00ean ng\u0103n x\u1ebfp. L\u1ed7 h\u1ed5ng ch\u1ec9 g\u00e2y \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn c\u00e1c d\u00f2ng Vigor3900\/2960\/300B, m\u00e0 kh\u00f4ng \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn b\u1ea5t k\u1ef3 s\u1ea3n ph\u1ea9m DrayTek n\u00e0o kh\u00e1c. Ng\u01b0\u1eddi d\u00f9ng \u0111\u01b0\u1ee3c khuy\u1ebfn c\u00e1o c\u1ea7n n\u00e2ng c\u1ea5p firmware t\u1eeb phi\u00ean b\u1ea3n 1.5.1.1 s\u1edbm nh\u1ea5t c\u00f3 th\u1ec3.<\/p>\n\n\n\n<p>Nh\u00f3m b\u1ed1n l\u1ed7 h\u1ed5ng \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n \u0111\u1eb7c bi\u1ec7t nguy hi\u1ec3m v\u1edbi c\u00e1c thi\u1ebft b\u1ecb \u0111\u1ecbnh tuy\u1ebfn, th\u01b0\u1eddng \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng l\u00e0 \u0111i\u1ec3m k\u1ebft n\u1ed1i gi\u1eefa m\u1ea1ng Internet v\u1edbi h\u1ec7 th\u1ed1ng m\u1ea1ng c\u1ee5c b\u1ed9 (LAN). \u0110\u1ec3 \u0111\u1ea3m b\u1ea3o an ninh m\u1ea1ng, c\u00e1c B\u1ed9, ban, ng\u00e0nh, \u0111\u1ecba ph\u01b0\u01a1ng c\u1ea7n ch\u1ee7 \u0111\u1ed9ng th\u1ef1c hi\u1ec7n c\u00e1c bi\u1ec7n ph\u00e1p:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>T\u1ed5 ch\u1ee9c ki\u1ec3m tra, r\u00e0 so\u00e1t thi\u1ebft b\u1ecb Draytek \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng trong h\u1ec7 th\u1ed1ng m\u1ea1ng; ki\u1ec3m tra c\u1ea5u h\u00ecnh, c\u1eadp nh\u1eadt phi\u00ean b\u1ea3n firmware m\u1edbi nh\u1ea5t; x\u00f3a b\u1ecf c\u00e1c t\u00e0i kho\u1ea3n l\u1ea1; t\u1eaft t\u00ednh n\u0103ng qu\u1ea3n tr\u1ecb t\u1eeb xa qua m\u1ea1ng internet.<\/li><li>T\u0103ng c\u01b0\u1eddng gi\u00e1m s\u00e1t an ninh m\u1ea1ng, k\u1ecbp th\u1eddi ph\u00e1t hi\u1ec7n ho\u1ea1t \u0111\u1ed9ng t\u1ea5n c\u00f4ng m\u1ea1ng, ph\u1ed1i h\u1ee3p, \u0111i\u1ec1u tra x\u00e1c minh, x\u1eed l\u00fd \u0111\u1ed1i t\u01b0\u1ee3ng th\u1ef1c hi\u1ec7n t\u1ea5n c\u00f4ng m\u1ea1ng.<\/li><li>Ph\u1ed1i h\u1ee3p v\u1edbi c\u00e1c c\u01a1 quan ch\u1ee9c n\u0103ng \u0111\u1ec3 r\u00e0 so\u00e1t h\u1ec7 th\u1ed1ng m\u1ea1ng c\u1ee7a t\u1ed5 ch\u1ee9c, \u0111\u01a1n v\u1ecb m\u00ecnh.<\/li><li>Trong tr\u01b0\u1eddng h\u1ee3p kh\u00f3 kh\u0103n trong vi\u1ec7c update firmware, ng\u01b0\u1eddi d\u00f9ng c\u1ea7n t\u1eaft t\u1ea1m th\u1eddi t\u00ednh n\u0103ng SSL VPN (Port 443) khi ch\u01b0a c\u1eadp nh\u1eadt b\u1ea3n v\u00e1 khi kh\u00f4ng c\u00f3 nhu c\u1ea7u s\u1eed d\u1ee5ng; Khi kh\u00f4ng c\u1ea7n thi\u1ebft s\u1eed d\u1ee5ng ch\u1ebf \u0111\u1ed9 truy c\u1eadp t\u1eeb xa, ng\u01b0\u1eddi d\u00f9ng n\u00ean t\u1eaft t\u00ednh n\u0103ng qu\u1ea3n tr\u1ecb thi\u1ebft b\u1ecb qua giao di\u1ec7n Web.<\/li><\/ul>\n\n\n\n<p class=\"has-text-align-right\"><strong>\u0110.T<\/strong><\/p>\n\n\n\n<p class=\"has-text-align-right\"><em>Ngu\u1ed3n:<\/em> antoanthongtin.vn<\/p>\n","protected":false},"excerpt":{"rendered":"<p>13:50:00 &#8211; Th\u1ee9 6, 27\/11\/2020 | L\u1ed6 H\u1ed4NG ATTT V\u1edbi vi\u1ec7c li\u00ean ti\u1ebfp ph\u00e1t hi\u1ec7n c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt nghi\u00eam tr\u1ecdng, Nh\u00e0 s\u1ea3n xu\u1ea5t thi\u1ebft b\u1ecb m\u1ea1ng v\u00e0 h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00fd Draytek \u0111\u00e3 ph\u00e1t h\u00e0nh kh\u1ea9n c\u1ea5p b\u1ea3n c\u1eadp nh\u1eadt firmware cho c\u00e1c thi\u1ebft b\u1ecb c\u1ee7a m\u00ecnh. DrayTek l\u00e0 nh\u00e0 s\u1ea3n xu\u1ea5t thi\u1ebft [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"limit_modified_date":"","last_modified_date":"","footnotes":""},"categories":[4,311],"tags":[],"class_list":["post-2233","post","type-post","status-publish","format-standard","hentry","category-ban-tin-tong-hop","category-tin-cds"],"_links":{"self":[{"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/posts\/2233","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/comments?post=2233"}],"version-history":[{"count":2,"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/posts\/2233\/revisions"}],"predecessor-version":[{"id":2236,"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/posts\/2233\/revisions\/2236"}],"wp:attachment":[{"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/media?parent=2233"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/categories?post=2233"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cdcangiang.vn\/index.php\/wp-json\/wp\/v2\/tags?post=2233"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}