Zyxel Firewall Vulnerability

CVE-2020-29583

Discovered: Published on December 23, 2020

Impacted Tech: Zyxel VPN gateways, access point controllers, and firewalls

Attacker Location: External

Highlights: There are no public exploits available; however, SANS Institute has noticed a large spike in scanning activity for Zyxel products.

The CVSS score is 7.8 out of 10 which is considered a “high” severity flaw.

What should I do?

Zyxel advises all customers to update their products the latest firmware version immediately.

References:

1. https://www.bankinfosecurity.com/researchers-warn-attackers-are-scanning-for-zyxel-products-a-15723
2. https://isc.sans.edu/ssh_usernames.html?username=zyfwp
3. https://www.eyecontrol.nl/blog/undocumented-user-account-in-zyxel-products.html
4. https://www.zyxel.com/support/CVE-2020-29583.shtml