Taiwanese hardware manufacturers, Zyxel, have no plans to release patches for two aggressive vulnerabilities that potentially affect thousands of customers.
The threat intelligence startup, GREYNOISE, warned last month that zero -day vulnerabilities that affected the Zyxel router have been actively used. GREYNOISE stated that this defect would execute any command on an affected device, leading to a complete system compromise, data removal, or network invasion.
According to GREYNOISE, it was discovered by Vulncheck by Vulncheck in the threat of the threat in July last year and reported to Zyxel the following month, but the manufacturer has not yet been patched or has been officially disclosed. 。
This week’s advisory stated that Zyxel had recognized two “recent” vulnerabilities. Currently, it is officially tracked as CVE-2024-40890 and CVE-2024-40891.
The company claims that Vulncheck has not reported a defect, and states that he first noticed on January 29, the day after Greynoise reported aggressive exploitation.
Zyxel, who uses devices in more than 1 million companies, said, “Because these bugs affect the legacy products that have reached the end -of -life period. [EOL] Many years “There is no plan to release a patch to correct them. Instead, the company advises customers to replace vulnerable routers with “new products for optimal protection.”
In a blog post on Tuesday, VULNCHECK pointed out that the affected device was not listed on the Zyxel EOL page, and states that some of the models affected by TechnicCrunch still can still be purchased. I am.
“These systems are old and have been supported for a long time, but they are very important because they are continuously used around the world and have sustainable interests from attackers,” he said in Vulncheck CTO. One jacob baines said.
According to Censys, a search engine for the Thing Internet of Thing and Internet assets, almost 1,500 vulnerable devices are exposed to the Internet.
Last week’s update stated that GREYNOISE has observed that detected botnets, including Mirai, have exploited one of Zyxel vulnerabilities, suggesting that they are used in large -scale attacks. Masu.
Zyxel’s spokesman Birgitte Larsen did not respond to multiple requests in Techniccrunch’s comments.
Source link
