Home » Technology » Critical bug in Zyxel’s firewalls exploited by hackers

Critical bug in Zyxel’s firewalls exploited by hackers

Security researcher at Rapid7 has discovered that hackers have begun exploiting a vulnerability (CVE-2022-30525) in Zyxel corporate firewalls and corporate VPN services.

The vulnerability allows an attacker to run arbitrary code on the affected device.

Affected models and software versions are:

USG FLEX 100, 100W, 200, 500, 700 (ZLD5.00 thru ZLD5.21 Patch 1)

USG20-VPN, USG20W-VPN (ZLD5.10 thru ZLD5.21 Patch 1)

ATP 100, 200, 500, 700, 800 (ZLD5.10 thru ZLD5.21 Patch 1)

A security patch has now been released and users are advised to install it as soon as possible. Either manually or by having automatic updates turned on.

Also read: Intel closes serious vulnerabilities in bios

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.