Critical flaw in Zyxel firewalls grants access to corporate networks (CVE-2022-30525)

A critical vulnerability (CVE-2022-30525) affecting several models of Zyxel firewalls has been publicly revealed, along with a Metasploit module that exploits it. Discovered by Rapid 7 researcher Jake Baines and disclosed to Zyxel on April 13, it was fixed by the company with patches released on April 28, but not publicly acknowledged by the company via an associated CVE or security advisory until now. About CVE-2022-30525 CVE-2022-30525 is a vulnerability that may be exploited by … More →

The post …

access corporate critical cve don't miss enterprise firewall firewalls flaw initial access broker networks rapid7 security update vulnerability vulnerability disclosure zyxel zyxel communications