Saturday, May 21, 2022
HomeCyber SecurityZyxel Releases Patch for Important Firewall OS Command Injection Vulnerability

Zyxel Releases Patch for Important Firewall OS Command Injection Vulnerability

Zyxel has moved to handle a essential safety vulnerability affecting Zyxel firewall units that permits unauthenticated and distant attackers to realize arbitrary code execution.

“A command injection vulnerability within the CGI program of some firewall variations may permit an attacker to change particular information after which execute some OS instructions on a susceptible system,” the corporate stated in an advisory revealed Thursday.

Cybersecurity agency Rapid7, which found and reported the flaw on April 13, 2022, stated that the weak spot may allow a distant unauthenticated adversary to execute code because the “no one” consumer on impacted home equipment.

Tracked as CVE-2022-30525 (CVSS rating: 9.8), the flaw impacts the next merchandise, with patches launched in model ZLD V5.30 –

  • USG FLEX 100(W), 200, 500, 700
  • USG FLEX 50(W) / USG20(W)-VPN
  • ATP collection, and
  • VPN collection

Speedy 7 famous that there are not less than 16,213 susceptible Zyxel units uncovered to the web, making it a profitable assault vector for menace actors to stage potential exploitation makes an attempt.

The cybersecurity agency additionally identified that Zyxel silently issued fixes to handle the difficulty on April 28, 2022 with out publishing an related Widespread Vulnerabilities and Exposures (CVE) identifier or a safety advisory. Zyxel, in its alert, blamed this on a “miscommunication through the disclosure coordination course of.”


“Silent vulnerability patching tends to solely assist lively attackers, and leaves defenders at midnight concerning the true danger of newly found points,” Rapid7 researcher Jake Baines stated.

The advisory comes as Zyxel addressed three totally different points, together with a command injection (CVE-2022-26413), a buffer overflow (CVE-2022-26414), and a neighborhood privilege escalation (CVE-2022-0556) flaw, in its VMG3312-T20A wi-fi router and AP Configurator that would result in arbitrary code execution.



Please enter your comment!
Please enter your name here

Most Popular

Recent Comments