Cybercriminals Ramp Up Exploits Against Serious Zyxel Flaw

2021-01-06 16:40

Security experts are warning hackers are ramping up attempts to exploit a high-severity vulnerability that may still reside in over 100,000 Zyxel Communications products.

Zyxel, a Taiwanese manufacturer of networking devices, on Dec. 23 warned of the flaw in its firmware and released patches to address the issue.

Zyxel devices are generally utilized by small businesses as firewalls and VPN gateways.

The vulnerability stems from Zyxel devices containing an undocumented account that has an unchangeable password - which can be found in cleartext in the firmware, according to Niels Teusink at EYE, who discovered the flaw and published his analysis in tandem with Zyxel's December advisory.

The number of current devices open to attack cannot by specifically pinpointed according to Teusink, globally more than 100,000 Zyxel devices have exposed their web interface to the internet.

Affected Zyxel devices include its ATP firewall series, Unified Security Gateway series and VPN series, a patch for which became available in December 2020.

News URL

https://threatpost.com/cybercriminals-exploits-zyxel-flaw/162789/

#cybercriminal #exploit #zyxel

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Zyxel		459	3	115	71	44	233