ZyXEL VMG3312-B10B 1.00(AAPP.7) devices have a backdoor root account with the tTn3+Z@!Sr0O+ password hash in the etc/default.cfg file.
zyxel vmg3312-b10b_firmware 1.00\\(aapp.7\\)