This article explains how to resolve the issue if Network Inspector in Avast Antivirus shows the following alert:
- Rom-0 vulnerability found
If you see the alert above after running a Network Inspector scan, your router contains a serious vulnerability that could allow an attacker to steal private data stored on your router, including the router's admin password. This password can be used to take control of your network, making all of the devices that are connected to your network vulnerable.
Solution
We recommend trying the possible solutions below in order:
Disable remote admin for your router
You can minimize the risks linked with this vulnerability by ensuring that the remote administration option in your router settings is disabled.
For instructions, refer to the Disable remote admin tab in the following article:
It is also necessary to update your router's firmware.
Update your router's firmware
Newer versions of your router's firmware may contain a fix for this issue. Routers do not typically run updates automatically, so you need to manually download and install any available updates.
Consult the documentation for your router model for instructions on how to download and install firmware updates. If updated firmware is not available, contact the manufacturer of your router to request that they provide a firmware update as soon as possible.
Below are links to the support pages for common router brands:
Apple | Asus | AT&T | Belkin | Cisco | Dell | D-Link | DrayTek | Eero | GL.iNET | Google | Huawei | Linksys | MicroTik | Motorola | NEC | NETGEAR | Sagem/Sagemcom | Speedefy | TP-Link | TRENDnet | Ubiquiti | UniFi | Vodafone | Zyxel
If you are unable to install a firmware update, we recommend replacing your router.
Further details
Your router contains the ROM-0 backup disclosure vulnerability.
A remote attacker could potentially exploit this vulnerability to bypass your security and download the ROM-0 backup file from your router. This backup includes your login credentials, Wi-Fi password, and other configuration data.
You can find more information about this vulnerability via the reference below:
- Avast One 22.x for Windows
- Avast One 22.x for Mac
- Avast Premium Security 22.x for Windows
- Avast Free Antivirus 22.x for Windows
- Avast Premium Security 15.x for Mac
- Avast Security 15.x for Mac
- Microsoft Windows 11 Home / Pro / Enterprise / Education
- Microsoft Windows 10 Home / Pro / Enterprise / Education - 32 / 64-bit
- Microsoft Windows 8.x / Pro / Enterprise - 32 / 64-bit
- Microsoft Windows 8 / Pro / Enterprise - 32 / 64-bit
- Microsoft Windows 7 Home Basic / Home Premium / Professional / Enterprise / Ultimate - Service Pack 1 with Convenient Rollup Update, 32 / 64-bit
- Apple macOS 12.x (Monterey)
- Apple macOS 11.x (Big Sur)
- Apple macOS 10.15.x (Catalina)
- Apple macOS 10.14.x (Mojave)
- Apple macOS 10.13.x (High Sierra)
- Apple macOS 10.12.x (Sierra)
- Apple Mac OS X 10.11.x (El Capitan)
Updated on: June-02-2022