Port 22

Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products

Zyxel has released a patch to address a critical vulnerability in its firmware concerning a hardcoded, undocumented secret account that could be abused by an attacker to login with administrative privileges and compromise its networking devices. The flaw, tracked asCVE-2020-29583(CVSS score 7.8), affectsversion 4.60present in a wide-range of Zyxel devices, including Unified Security Gateway