07-05-2021 04:08 AM
I am a security researcher from Baidu，Recently, we have detected a large number of hacking incidents from ddos attacks initiated on the UDP9001 port on the SmartZone-100 device. Great harm!!!
Refer to my screenshot for details.my phone number is 18903860673
My email address is firstname.lastname@example.org， I come from Baidu in China，Hope you guys get back to me as soon as possible，
07-06-2021 11:47 AM
@li_xiang and @parikshith_nagaraj_aa0004 and @syamantak_omer : you're still able to read and access this thread after we shifted it private, correct?
07-06-2021 06:40 PM
@allan_grohe Yes, we can access ip and port through UDP protocol and receive excessive response packets. Can you tell me what service is opened on port 9001? It should not be es, but filebeat? What is the specific service?
07-07-2021 08:28 AM
@syamantak_omer and @parikshith_nagaraj_aa0004 can help you better then me on that front, @li_xiang---I'm not technical in our products like they are!
07-21-2021 09:40 AM
This vulnerabilities has been fixed by our engineering team.
Refer the security advisory from the below link.