Zyxel has released security updates addressing a critical security vulnerability affecting 4G LTE indoor routers. The vulnerability affects two router models, LTE3202-M437 and LTE3316-M604.
Tracked as CVE-2023-22920, the vulnerability could allow a remote threat actor to gain unauthorized access to a vulnerable system where a factory-default misconfiguration is present. By using Telnet, the threat actor could exploit this vulnerability and gain unauthorized access to the affected device.
The vulnerability affects the following impacted models and versions:
Zyxel has released security updates
Zyxel has released security updates addressing the vulnerability. Users of impacted models and versions are strongly advised to apply the published updates as soon as possible to avoid potential exploitation of the vulnerability.