Netrise
Products
netrise-platform-icon
NetRise Platform
Analyze compiled code to create accurate SBOMs and uncover risk within the software that actually executes on your devices and throughout your enterprise.
provenance-1
NetRise Provenance
Understand risk associated with open-source software components: origin, maintainers, and repository health across ecosystems
ZeroLens-icon
NetRise ZeroLens
Identify weaknesses in compiled software before bad actors find and exploit them.
integration-menu-img
Integrations
NetRise integrates seamlessly into your workflow. Explore our ecosystem to secure your software supply chain.
Solutions
Solutions

Explore our comprehensive solutions designed to meet diverse industry needs and use cases, ensuring security, compliance, and maximum efficiency.

Featured Solution
Improve software transparency and continuous monitoring
Deliver Software Supply Chain Security as a Managed Service
Use Cases
ph_seal-check-light
Compliance Adherence
Ensure compliance with global standards.
ph_chart-scatter-light
Continuous Monitoring
Real-time insights and alerts.
ph_warning-light
Holistic Risk Visibility
Achieve full visibility on vulnerabilities.
ph_list-checks-light
Inventory & Querying
Track and manage software assets.
ph_hand-coins-light-1
SBOM Management
Maintain comprehensive software bills.
LockKey-Menu-Icon
Post-Quantum Cryptography Compliance
Be ready when quantum computing arrives.
ph_shield-check-light
EU CRA Compliance
Prove CRA readiness with evidence.
ph_graph-light
Provenance Intelligence
Understand origins, maintainers, and risk
ph_link-light
Managed Software Supply Chain Security
Visibility into what is inside software and where it comes from
By Industry
ph_user-rectangle-light
Consulting Firms
Solutions for consultancy needs.
ph_barbell
Device Manufacturers
Compliance and security across devices.
ph_building-office-light
Enterprise Corporations
Security for large-scale environments.
ph_bank-light
Government Organizations
Reliable public sector solutions.
ph_ambulance-light
Healthcare
Secure and compliant healthcare data.
ph_lightning-light
Power & Utilities
Manage risk in critical infrastructure.
Resources
Explore NetRise

Find product docs, customer success stories, and company updates in one place.

Latest Resources
netrise-eu-cra-data-sheet-featured-img
NetRise & the EU Cyber Resilience Act (CRA): Compliance Data Sheet
Company
ph_users-three-light
About Us
Learn about NetRise
ph_briefcase-light
Careers
Explore careers with NetRise
ph_calendar-star-light
Events
Conferences, Webinars, and Podcasts
ph_shield-check-light
Security
Review NetRise security and compliance practices
ph_megaphone-light
Press Releases
Latest NetRise product and company updates
ph_newspaper-clipping-light
News & Awards
NetRise in the news, industry trends, and awards
Resource Library
note-light
Product Documents
Learn the platform, fast — briefs and data sheets
thumbs-up-light
Customer Success Stories
Outcome-focused stories from teams building and buying secure software
ph_newspaper-light
Deeper Dives
eBooks, Whitepapers, and longer-form content
ph_note-pencil-light
Blog
Stay informed with our latest articles
ph_microphone-light
Webinars, Podcasts, and Videos
Watch and listen on demand
ph_books-light
All Resources
Explore our full resource library by topic, industry, or asset
Blog Partners
Log in
Schedule a Demo
Log in
Schedule a Demo

Legacy Vulnerabilities in Wireless Firmware: The Lingering Threat of the Pixie Dust Exploit

Pixie Dust, disclosed in 2014, still persists in active firmware a decade later. NetRise analysis uncovered 24 vulnerable devices across six major vendors, with patch delays averaging nearly 10 years. These findings highlight systemic weaknesses in firmware supply chains that leave enterprises and consumers exposed.


 

Resource Library Research Legacy Vulnerabilities in Wireless Firmware: The Lingering Threat of the Pixie Dust Exploit
Research

Legacy Vulnerabilities in Wireless Firmware: The Lingering Threat of the Pixie Dust Exploit

More than a decade after disclosure, Pixie Dust still lurks in active firmware. NetRise analysis reveals systemic flaws in Wi-Fi device security.
Download the Report
netrise-pixie-dust-report-ft

Why This Report Matters

logo-star

Limited Vendor Transparency

Vendors lack transparent advisories and effective update mechanisms.

Hidden Firmware-Level Risk

Enterprises remain exposed to silent, firmware-level exploit paths.

Repeated Supply Chain Weaknesses

Supply chains continue to recycle insecure defaults, repeating the same risks.
Key Report Insights

What You’ll Learn in This Report:

Firmware supply chains don’t just inherit vulnerabilities — they preserve them. The persistence of Pixie Dust reveals systemic weaknesses that impact both OEMs and enterprises.

  • SBOMs alone cannot capture vendored, statically linked, or legacy modules.
  • Vendors shipped vulnerable firmware years after public disclosure.
  • End-of-life devices never received fixes, leaving long-tail exposure in the field.
  • Regulatory and operational risk is amplified by poor patch practices.
background-computer-insecurity-hacking-3d-illustration
Key Findings:

Hidden Risks in Wireless Firmware

Pixie Dust, first disclosed in 2014, continues to expose consumer and small-business networking devices in 2025. Across six major vendors, we identified 24 devices still vulnerable, with average patch delays of nearly 10 years. Many products remain actively supported yet unpatched, underscoring systemic risks in firmware supply chains.

  • Vulnerable firmware releases as late as 2025
  • Average patch lag: 9.6 years
  • Only 4 of 24 devices were ever patched
  • 13 devices remain supported but vulnerable



circuit-board-close-up-with-different-components
From Anecdote to Evidence

Why NetRise Conducted This Analysis

A hobbyist rediscovering Pixie Dust in 2023 showed this wasn’t a dead exploit. With NetRise’s firmware repositories and binary analysis tooling, that one-off observation became a defensible dataset spanning multiple vendors and nearly a decade of releases.

Binary analysis makes these legacy flaws visible when vendor disclosures and package manifests do not.

Background conceptual image of digital 3d icons

You might also like

Learn how we helped the customers to reach the next level

View All
Webinar
Keeping the Pace: Innovation Insights - The Blast Radius Problem
Webinar
Keeping the Pace: Innovation Insights - Vulnerability Prioritization
Webinar
Fragile by Design: Large-Scale Evidence of Software Supply Chain Risk
Footer Logo Know Our Platform
Product
  • Platform
  • Provenance
  • ZeroLens
  • Integrations
Use Cases
  • Compliance Adherence
  • Continuous Monitoring
  • Holistic Risk Visibility
  • Inventory & Querying
  • Return on Investment
  • SBOM Management
  • Post-Quantum Cryptography
  • EU CRA
  • Provenance Intelligence
  • Managed Software Supply Chain Security
Use Cases
  • SBOM Management
  • Post-Quantum Cryptography
  • EU CRA
  • Provenance Intelligence
  • Managed Software Supply Chain Security
Industries
  • Consulting Firms
  • Device manufactures
  • Enterprise Corporations
  • Government Organizations
  • Healthcare
  • Power & Utilities
Resource Library
  • Blog
  • Product Documents
  • Customer Success Stories
  • Deeper Dives
  • Webinars & Podcasts
  • All Resources
Company
  • About Us
  • Partners
  • Security
  • Press Releases
  • News & Awards
  • Events
  • Careers
  • Media Kit
LinkedIn X (Twitter) Facebook YouTube
Copyright © 2026 NetRise, Inc. All Rights Reserved
Terms of Service Privacy Policy Cookie Policy
Real person here 👉
Lightbox Image