Published: 22/12/2020 Updated: 14/01/2021
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

zyxel usg20-vpn_firmware 4.60

zyxel usg20w-vpn_firmware 4.60

zyxel usg40_firmware 4.60

zyxel usg40w_firmware 4.60

zyxel usg60_firmware 4.60

zyxel usg60w_firmware 4.60

zyxel usg110_firmware 4.60

zyxel usg210_firmware 4.60

zyxel usg310_firmware 4.60

zyxel usg1100_firmware 4.60

zyxel usg1900_firmware 4.60

zyxel usg2200_firmware 4.60

zyxel zywall110_firmware 4.60

zyxel zywall310_firmware 4.60

zyxel zywall1100_firmware 4.60

Github Repositories

Scanner for Zyxel products which are potentially vulnerable due to an undocumented user account (CVE-2020-29583)

Scanner for Zyxel products which are vulnerable due to an undocumented user account (CVE-2020-29583) Vuln details: wwweyecontrolnl/blog/undocumented-user-account-in-zyxel-productshtml (But I'm not sure if it's really possible to login with zyfwp via the web interface? Any reports would be appreciated Also the link to the "full list of affected devices


欢迎关注阿尔法实验室微信公众号 20201231 [漏洞] 2020年增加的10个最严重的CVE blogdetectifycom/2020/12/30/top-10-critical-cves-added-in-2020/ Chromium RawClipboardHostImpl中的UAF漏洞 bugschromiumorg/p/chromium/issues/detail?id=1101509 [工具] Sarenka:OSINT工具,将来自shodan、censys等服务的数据集中在一处

Recent Articles

Cybercriminals Ramp Up Exploits Against Serious Zyxel Flaw
Threatpost • Lindsey O'Donnell • 06 Jan 2021

Security experts are warning hackers are ramping up attempts to exploit a high-severity vulnerability that may still reside in over 100,000 Zyxel Communications products.
Zyxel, a Taiwanese manufacturer of networking devices, on Dec. 23 warned of the flaw in its firmware (CVE-2020-29583) and released patches to address the issue. Zyxel devices are generally utilized by small businesses as firewalls and VPN gateways.
Fast forward to this week, several security researchers have spotted...