Enhancing Network Stability and Security Database Update in Deco M5/M9 Plus Firmware 1.9.1
Hey Everyone,
Over the past month, we have gathered valuable user feedback on the following firmware updates.
-
Deco M5/Deco M9 Plus (Firmware Version 1.9.1)
-
Deco X20/Deco X60 (Firmware Version 1.6.1)
The feedback and behaviors reported by users can be categorized into three scenarios. The affected models, each scenario, and the commonly observed behaviors are described below.
Affected Models:
Deco M5_V1/V2/3/V3.2
Deco M9 Plus_V2/V2.2
Deco X20_V1/V1.2
Deco X60_V1/V2
Scenario 1: Incorrect Attack Records Detected by Network Intrusion Prevention
Behaviors including but are not limited to:
Classification |
Status |
| Blocked IP:194.168.4.100 Classification: CNC attack |
Fixed |
| ICMP (CVE-2015-7759) | |
| CVE-technet.microsoft.com/en-us/secuSERVER-IIS_encoding_access | |
| SNMP(CVE-2002-0013) | Fixed |
| CVE-technet.microsoft.com/en-us/secuOS-WINDOWS_Microsoft_Windows_TCP_print_sevice_overflow-attempt | |
| CVE-tools.cisco.com/security/cernter/protocol-SNMP_public_access_upd | |
| CVE-2017-7285 OS-LINUX_Linux-Kernel_Challenge_ACK_provocation_attempt |
Scenario 2: Malicious Content Filter Randomly Blocks Safe Websites or Domains
Behaviors including but are not limited to:
Websites |
Potential Impact |
Status |
|
|
Fixed The Content Classification rules in the Cloud have been updated to prevent false-positive Malware alerts or triggers. We recommend rebooting your Deco System. |
Scenario 3: Satellite Deco Node LEDs are Green and Functioning Properly, but the Deco App Reports them as "Offline"
-
Please refer to this link for instructions on how to submit your Deco App log: How to Collect System Log of Deco App
(After submitting your Deco App Log, please comment below with the ticket ID No.)
-
Starting with the Deco M5_V1/V2/V3/V3.2, a beta firmware has been developed to address the behaviors. We recommend that affected users install the firmware from the links below. As we gather feedback and verify the fix, similar patches will be applied to other affected models.
- Note: Pre-release and Beta firmware should be used at your own discretion. We cannot guarantee the functionality of features or technical support for Pre-Release or Beta Firmware.
- If you are not comfortable using beta firmware, please wait for the official fix or contact our support teams for assistance.
If you observe any unusual network activity, such as frequent disconnections, please verify whether there are suspicious entries within Network Security. If your experience with Deco is unrelated to these issues, kindly start a new thread with detailed information about the observed behavior so our teams can address your concern promptly.
If you have encountered a similar phenomenon but do not see the attacking or blocking entries within Network Security, please provide your Deco model number(s), firmware version(s), and a screenshot of the relevant record in the comments below.
