Kitz Forum
Computer Software => Security => Topic started by: enformatic on February 28, 2020, 09:50:50 AM
-
A vulnerability was found in Zyxel.
https://www.kb.cert.org/vuls/id/498544/
https://krebsonsecurity.com/2020/02/zyxel-fixes-0day-in-network-storage-devices/
https://www.zyxel.com/support/remote-code-execution-vulnerability-of-NAS-products.shtml
How to check if it works for me?
----
Admin - Edited topic title to clarify NAS boxes.
-
It's not totally clear but I think this only affects NAS boxes and not routers.
Stuart
-
It's not totally clear but I think this only affects NAS boxes and not routers.
Stuart
It does list model numbers and they all start NAS/NSA so yeah I think its fairly clear.
You gotta love Capitalism:
many of these devices are no longer supported by Zyxel and will not be patched
Its about time vendors were forced to fix security flaws regardless of how old the product is. Surely it can be argued a flaw like this means the product never was fit for purpose thus should absolutely be patched regardless of its age?
-
How to check if it works for me?
What ZyXEL manufactured product do you own and use?
-
VMG8924-B10A from polish Orange: https://forum.kitz.co.uk/index.php/topic,23948.0.html
-
VMG8924-B10A from polish Orange: https://forum.kitz.co.uk/index.php/topic,23948.0.html
Then you are not affected by the vulnerability. :)