Manually check every 3 months. However, most ISPs auto-push critical updates within 2-4 weeks of release.
Several CVEs affect the THG3000’s older Linux kernel and services: thg3000 router firmware
$ qemu-system-arm -M bcm2837 -kernel kernel.bin -dtb bcm63178.dtb -drive file=rootfs.bin,format=raw -append "root=/dev/sda console=ttyS0" -nographic Manually check every 3 months
| CVE | Component | Risk | |----------------|----------------|--------------------------------------------------------------| | CVE-2021-35247 | MiniUPnPd | Remote info disclosure (LAN side) | | CVE-2022-30023 | Telnet daemon | Weak credential storage (if enabled) | | CVE-2023-28856 | HTTPd (RomPager)| Pre-auth buffer overflow → RCE (patched in 6.00.12+) | Manually check every 3 months. However
Occasionally, a new firmware introduces a crippling bug (e.g., DNS timeouts, Ethernet port failures). Downgrading may be your only solution.