Actively exploited vulnerability

CVE-2022-30525: Zyxel Multiple Firewalls OS Command Injection Vulnerability

A command injection vulnerability in the CGI program of some Zyxel firewall versions could allow an attacker to modify specific files and then execute some OS commands on a vulnerable device.

CISA KEV source 16 May 2022 added 6 Jun 2022 remediation due

Affected product

Zyxel ยท Multiple Firewalls

Known ransomware use: Unknown

Required action

Follow the source advisory and validate exposure in your environment.

Apply updates per vendor instructions.

Related Yasna coverage

Recent reporting that mentions CVE-2022-30525.