08-23-2018 04:39 PM
09-13-2018 06:45 AM
From what I understand an attacker does need access to your home network to exploit the fault, if that's the case it sure seems like I'd have bigger problems than burnt stew .
Seriously, to me the safest thing to do is to deny the wemos access to the internet at best, at worst put them in a private subnet with no access to your main network. With belkin's known cloud vulnerabilities I worry most about an attacker coming in from there directly rather than exploiting the device locally.
It's also a very strong case for DISABLING upnp on your router. It's a horrible feature (IMHO!) that allows anything running inside your network to reconfigure your router to open your network and let in all sorts of terrible things. It's mostly used at the router for peer to peer stuff - most of us don't need it. Disabling upnp on the router will not affect the wemos, dlna or other similar apps that only use it for local discovery, in fact in some cases they run better when the router ignores upnp.