tldrdaily.news logo
Tag

Zyxel

All articles tagged with #zyxel

technology2 years ago

Zyxel addresses critical vulnerabilities in NAS, firewall, and AP devices

Zyxel has identified multiple critical vulnerabilities in its network-attached storage (NAS) devices, including flaws that could allow unauthorized access and execution of operating system commands. The affected devices are the NAS326 and NAS542 models running specific firmware versions. Users are advised to upgrade their firmware to the recommended versions to mitigate the risks. No mitigation advice or workarounds have been provided, emphasizing the importance of applying the firmware update.

via BleepingComputer|
#firmware-update#nas-devices#security
network-security-vulnerability2 years ago

Zyxel Firewall and VPN Devices Face Critical Security Threats

Zyxel has released software updates to address two critical security flaws affecting select firewall and VPN products that could be abused by remote attackers to achieve code execution. Both the flaws are buffer overflow vulnerabilities and are rated 9.8 out of 10 on the CVSS scoring system. The impacted devices include ATP, USG FLEX, USG FLEX50(W) / USG20(W)-VPN, VPN, and ZyWALL/USG. Security researchers from TRAPA Security and STAR Labs SG have been credited with discovering and reporting the flaws.

via The Hacker News|
#buffer-overflow#code-execution#firewall
cybersecurity2 years ago

Zyxel Firewall and VPN Devices Have Critical Security Flaws, Warns Company

Zyxel has warned of two critical-severity vulnerabilities in several of its firewall and VPN products that could allow denial-of-service (DoS) and remote code execution on vulnerable devices. The buffer overflow issues affect devices running specific firmware versions and can be exploited without authentication. Zyxel has released patches for the affected products and advises users to install them as soon as possible. Small to medium-sized businesses use these devices to protect their networks and allow secure network access to remote or home-based workers.

via BleepingComputer|
#cybersecurity#firewall#patch