#ZyxelAdvisory

Zyxel warns of critical OS command injection flaw in routers

by

September 3, 2024 at 03:59PM Zyxel released security updates for a critical vulnerability affecting various business routers, allowing unauthenticated attackers to execute OS commands. The flaw, tracked as CVE-2024-7261, has a CVSS v3 score of 9.8. Additionally, multiple high-severity flaws in APT and USG FLEX firewalls were addressed through security updates. Detailed information is available … Read more

Zyxel Patches Remote Code Execution Bug in Firewall Products

by

February 26, 2024 at 12:09PM Zyxel, a Taiwanese networking company, has issued patches for security vulnerabilities in its firewall and access point products. The defects could lead to remote code execution attacks. The company documented four specific vulnerabilities and urged urgent application of patches and hotfixes. Zyxel has acknowledged its products being exploited in DDoS-capable … Read more