Zyxel.Firewall.Default.Credentials
Description
This indicates an attack attempt against a Security Bypass Vulnerability in Zyxel firewalls and AP controllers.
The vulnerability is due to hard-coded default credentials on the vulnerable devices. Successful exploitation can lead to accessing the target system with administrative privileges.
Affected Products
ATP series running firmware ZLD V4.60
USG series running firmware ZLD V4.60
USG FLEX series running firmware ZLD V4.60
VPN series running firmware ZLD V4.60
NXC2500 running firmware V6.00 through V6.10
NXC5500 running firmware V6.00 through V6.10
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the latest update from the vendor.
https://www.zyxel.com/support/CVE-2020-29583.shtml
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |