{"id":"https://openalex.org/W4412405384","doi":"https://doi.org/10.1109/cniot65435.2025.11071027","title":"Analyzing 1-Day Vulnerabilities in Embedded Devices: A Threat Modeling and Patching Pattern Study for Router Security","display_name":"Analyzing 1-Day Vulnerabilities in Embedded Devices: A Threat Modeling and Patching Pattern Study for Router Security","publication_year":2025,"publication_date":"2025-05-23","ids":{"openalex":"https://openalex.org/W4412405384","doi":"https://doi.org/10.1109/cniot65435.2025.11071027"},"language":"en","primary_location":{"id":"doi:10.1109/cniot65435.2025.11071027","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cniot65435.2025.11071027","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 6th International Conference on Computing, Networks and Internet of Things (CNIOT)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5108029304","display_name":"Shutong Lv","orcid":"https://orcid.org/0009-0004-3559-3974"},"institutions":[{"id":"https://openalex.org/I4210095084","display_name":"Zhongji Test Equipment (China)","ror":"https://ror.org/00p24re17","country_code":"CN","type":"company","lineage":["https://openalex.org/I4210095084"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Shutong Lv","raw_affiliation_strings":["Chinese Flight Test Establishment,Xi'An,China"],"affiliations":[{"raw_affiliation_string":"Chinese Flight Test Establishment,Xi'An,China","institution_ids":["https://openalex.org/I4210095084"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085121039","display_name":"Zhuoran Chen","orcid":null},"institutions":[{"id":"https://openalex.org/I4210095084","display_name":"Zhongji Test Equipment (China)","ror":"https://ror.org/00p24re17","country_code":"CN","type":"company","lineage":["https://openalex.org/I4210095084"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhuoran Chen","raw_affiliation_strings":["Chinese Flight Test Establishment,Xi'An,China"],"affiliations":[{"raw_affiliation_string":"Chinese Flight Test Establishment,Xi'An,China","institution_ids":["https://openalex.org/I4210095084"]}]},{"author_position":"last","author":{"id":null,"display_name":"Yuzhu Hou","orcid":null},"institutions":[{"id":"https://openalex.org/I4210095084","display_name":"Zhongji Test Equipment (China)","ror":"https://ror.org/00p24re17","country_code":"CN","type":"company","lineage":["https://openalex.org/I4210095084"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yuzhu Hou","raw_affiliation_strings":["Chinese Flight Test Establishment,Xi'An,China"],"affiliations":[{"raw_affiliation_string":"Chinese Flight Test Establishment,Xi'An,China","institution_ids":["https://openalex.org/I4210095084"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5108029304"],"corresponding_institution_ids":["https://openalex.org/I4210095084"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.19284508,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"5"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/router","display_name":"Router","score":0.7337359189987183},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7206741571426392},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6193147897720337},{"id":"https://openalex.org/keywords/threat-model","display_name":"Threat model","score":0.5404411554336548},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.4088763892650604}],"concepts":[{"id":"https://openalex.org/C2775896111","wikidata":"https://www.wikidata.org/wiki/Q642560","display_name":"Router","level":2,"score":0.7337359189987183},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7206741571426392},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6193147897720337},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.5404411554336548},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.4088763892650604}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/cniot65435.2025.11071027","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cniot65435.2025.11071027","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 6th International Conference on Computing, Networks and Internet of Things (CNIOT)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":5,"referenced_works":["https://openalex.org/W2618635610","https://openalex.org/W3135014913","https://openalex.org/W4390920237","https://openalex.org/W4401169999","https://openalex.org/W4404143603"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2122026593","https://openalex.org/W4322731571","https://openalex.org/W1929087753","https://openalex.org/W4400055136","https://openalex.org/W2886023993","https://openalex.org/W3185781018","https://openalex.org/W2113607124"],"abstract_inverted_index":{"With":[0],"the":[1,24,43,114,118,123,160],"expanding":[2],"application":[3],"scenarios":[4],"of":[5,9,11,19,26,48,107,117,125],"IoT":[6],"devices,":[7,50,127],"hundreds":[8],"millions":[10],"embedded":[12,27,49,70,85,102,126,153,171],"devices":[13,28],"have":[14,37],"become":[15],"an":[16],"integral":[17],"part":[18],"daily":[20],"life.":[21],"However,":[22],"as":[23],"deployment":[25],"continues":[29],"to":[30,42],"grow,":[31],"their":[32,149],"increasingly":[33],"prominent":[34],"security":[35,65,79,124,138,155],"issues":[36],"drawn":[38],"widespread":[39],"attention.":[40],"Due":[41],"typically":[44],"long":[45],"update":[46],"cycles":[47],"many":[51],"publicly":[52],"disclosed":[53],"1-day":[54,62],"vulnerabilities":[55,97,168],"remain":[56],"highly":[57],"exploitableThis":[58],"study":[59,129,161],"focuses":[60],"on":[61,77,113],"vulnerability":[63],"and":[64,94,134,148],"patch":[66],"discovery":[67],"for":[68,167],"Linux-Based":[69],"systems.":[71],"A":[72],"comprehensive":[73],"investigation":[74],"was":[75],"conducted":[76],"1,699":[78],"advisories":[80,109],"released":[81],"by":[82],"four":[83],"leading":[84],"device":[86,154,172],"manufacturers.":[87],"The":[88],"findings":[89],"reveal":[90],"that":[91],"command":[92],"injection":[93],"buffer":[95],"overflow":[96],"pose":[98],"significant":[99],"risks":[100],"in":[101,152,170],"devices.":[103],"Notably,":[104],"only":[105],"14":[106],"these":[108],"provided":[110],"detailed":[111],"information":[112],"precise":[115],"locations":[116],"vulnerabilities.":[119],"To":[120],"further":[121],"analyze":[122],"this":[128,141],"constructs":[130],"a":[131,136],"threat":[132],"model":[133],"performs":[135],"systematic":[137],"assessment.":[139],"Through":[140],"process,":[142],"key":[143],"research":[144,156],"targets,":[145],"potential":[146],"threats,":[147],"root":[150],"causes":[151],"are":[157],"identified.":[158],"Additionally,":[159],"summarizes":[162],"three":[163],"common":[164],"patching":[165],"patterns":[166],"discovered":[169],"firmware.":[173]},"counts_by_year":[],"updated_date":"2026-04-21T08:09:41.155169","created_date":"2025-10-10T00:00:00"}