Zyxel has released security updates for a critical security vulnerability affecting business firewall and VPN solutions.

The security vulnerability tracked by code CVE-2022-0342 is an authentication bypass vulnerability caused by the lack of a proper access control mechanism in the web interface of some firewall versions. A threat actor that successfully exploits the vulnerability can bypass authentication and gain access to administrative privileges on the vulnerable system. The vulnerability affects the versions listed below.

Zyxel stated that no evidence of active exploitation of the said vulnerability has been detected yet and has released updates that fix the vulnerability. In this context, it is recommended that updates that fix the vulnerability be applied immediately to avoid the attacks that can be carried out using the vulnerability.

CVE-2022-0342 cyber attack news cyber security news cybersecurity news news hackers security news Zyxel Zyxel Release

Zyxel Released Updates to Fixing a Critical Vulnerability

Zyxel Released Updates to Fixing a Critical Vulnerability

European Focused Threat Actors – Who Actively Continue Their Strategies

Critical 0-Day Alarm in Microsoft Exchange Server

European Focused Threat Actors – APT Groups

Multiple Vulnerabilities Detected in Solarwinds Orion

Security News – Week 39

Zebrocy Malware Technical Analysis Report

Related Posts

Critical 0-Day Alarm in Microsoft Exchange Server

Multiple Vulnerabilities Detected in Solarwinds Orion

Critical RCE Alarm in Sophos Firewall Solutions

AffectMe: The Critical Vulnerability in Oracle Cloud Infrastructure

We know what hackers know about you

Solutions

Use Case

Partners

Company