Starlink Dishy is vulnerable to CSRF via DNS Rebinding. - CrowdStream

Summary by SpaceX/Starlink

This CSRF vulnerability allowed JavaScript on 3rd party websites to reach unauthenticated features (ex: reboot, stow, speedtest) on all generations of Dishy and the Starlink Router when a malicious website is loaded from a device connected via Starlink. Features requiring authentication (ex: changing WiFi passwords, adding a repeater, etc.) were not affected.

This vulnerability was patched in both the Starlink WiFi Router and Dishy in December 2023. Dishy and the router update automatically, so no user action is required.

Summary by BoBdoduk

Starlink Dishy (Gen 2) and Starlink Router (Gen 2) are vulnerable to DNS rebinding attacks.
Therefore, by following a malicious link created by an attacker, a remote attacker can take control of a Starlink device on the local network.

Activity

jbaizer Customer published the disclosure report
a year ago(03 Apr 2024 17:16:44 UTC)
BoBdoduk sent a message
a year ago(29 Mar 2024 16:32:49 UTC)
jbaizer Customer sent a message
a year ago(29 Mar 2024 14:46:15 UTC)
BoBdoduk sent a message
a year ago(28 Mar 2024 06:13:36 UTC)Edited a year ago
jbaizer Customer sent a message
a year ago(25 Mar 2024 15:43:25 UTC)
BoBdoduk requested disclosure
a year ago(19 Mar 2024 15:53:56 UTC)
tim Customer changed the state to Resolved
a year ago(22 Dec 2023 20:31:33 UTC)
tim Customer sent a message
a year ago(20 Dec 2023 01:42:00 UTC)
tim Customer sent a message
a year ago(12 Dec 2023 21:25:29 UTC)
BoBdoduk sent a message
a year ago(11 Dec 2023 20:11:33 UTC)
BoBdoduk sent a message
a year ago(30 Nov 2023 10:34:50 UTC)
tim Customer rewarded BoBdoduk $7,500
a year ago(28 Nov 2023 01:06:31 UTC)
tim Customer sent a message
a year ago(28 Nov 2023 01:06:16 UTC)
tim Customer changed the state to Unresolved
a year ago(28 Nov 2023 01:05:38 UTC)
tim Customer rewarded BoBdoduk 20 points
a year ago(28 Nov 2023 01:05:38 UTC)
BoBdoduk sent a message
a year ago(15 Nov 2023 10:12:14 UTC)Deleted a year ago
BoBdoduk sent a message
a year ago(15 Nov 2023 09:44:34 UTC)Edited a year ago
tim Customer sent a message
a year ago(07 Nov 2023 17:18:06 UTC)
BoBdoduk sent a message
a year ago(07 Nov 2023 17:05:45 UTC)Deleted a year ago
tim Customer changed the state to Triaged
a year ago(06 Nov 2023 17:16:46 UTC)
tim Customer changed the severity to P2
a year ago(06 Nov 2023 17:16:45 UTC)
BoBdoduk sent a message
a year ago(06 Nov 2023 15:55:50 UTC)
BoBdoduk sent a message
a year ago(06 Nov 2023 03:21:12 UTC)Edited a year ago
BoBdoduk sent a message
a year ago(05 Nov 2023 10:58:26 UTC)
BoBdoduk created the submission
a year ago(03 Nov 2023 14:10:34 UTC)