Several Zyxel firewall and WLAN controller products contain hardcoded credentials for an undocumented user account that has admin privileges.
Identified by EYE security researcher Niels Teusink, the vulnerability exists because the password for the “zyfwp” user account was stored in plaintext and was visible in one of the binaries on the system.
from SecurityWeek RSS Feed https://ift.tt/3b5YYP7
via https://ifttt.com/ IFTTT
No comments:
Post a Comment