Stig's Lab Notes
  • A Silly Satellite Wi-Fi Router Bug - Redport Pre-Auth RCE

    Pre-auth RCE over LAN in the RedPort wXa-223 satellite Wi-Fi router, found within minutes of unpacking the firmware.

    July 24, 2025 - 2 minute read -
    Embedded Research RCE
  • AI-Driven Binary Analysis on a TOTOLINK Router - Shooting Bugs-In-A-Barrel

    Using PRIZM ZERO's AI-driven binary analysis to reproduce known CVEs and find new memory-corruption bugs in a TOTOLINK router's cstecgi.cgi.

    June 18, 2025 - 11 minute read -
    Embedded AI Research RCE
  • Uncovering a 0-Click RCE in the SuperNote Nomad E-ink Tablet

    Chaining a vulnerability and misconfigurations into a remotely installable, 0-click rootkit on the SuperNote Nomad E-ink tablet (CVE-2025-32409).

    April 6, 2025 - 9 minute read -
    Android Research RCE
  • Rooting the FiiO M6 - Part 2 - Writing an LPE Exploit For Our Overflow Bug

    Turning the FiiO M6 kernel stack overflow into a working local privilege escalation exploit.

    March 27, 2023 - 20 minute read -
    Android Kernel Research
  • Rooting the FiiO M6 - Part 1 - Using the "World's Worst Fuzzer" To Find A Kernel Bug

    Using the world's worst fuzzer to find a kernel stack overflow in the FiiO M6's procfs debug interface.

    February 18, 2023 - 12 minute read -
    Android Kernel Research
  • Wavlink Command Injection - CVE-2022-23900

    An unauthenticated command injection in the Wavlink WL-WN531P3 router API, exploitable from the internet via CSRF.

    April 5, 2022 - 4 minute read -
    Firmware Research IoT

© 2026 Stig's Lab Notes. Built with Chalk.