"Web browsers for desktop and mobile devices tend to receive regular security updates, but that often isn't the case for those that reside within game consoles, televisions, e-readers, cars, and other devices. These outdated, embedded browsers can leave you open to phishing and other security vulnerabilities. Researchers affiliated with the DistriNet Research Unit of KU Leuven in Belgium have found that newly released devices may contain browsers that are several years out of date and include known security bugs."
"The framework functions by providing willing study participants with a unique URL that they're asked to enter into the integrated browser in the device being evaluated. During the testing period between February 2024 and February 2025, the boffins received 76 entries representing 53 unique products and 68 unique software versions. In 24 of the 35 smart TVs and all 5 e-readers submitted for the study, the embedded browsers were at least three years behind current versions available to users of desktop computers."
A crowdsourced evaluation framework called CheckEngine was used to assess embedded browsers in closed-source devices by providing participants a unique URL to load in integrated browsers. Testing between February 2024 and February 2025 returned 76 entries covering 53 products and 68 software versions. Many embedded browsers were several years behind current desktop and mobile versions; 24 of 35 smart TVs and all five e-readers were at least three years out of date. Eight products included browsers over three years obsolete at release. Some device makers advertised free updates but did not provide browser security updates.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]