cbcvebase.
CVE-2020-29583
published 2020-12-22

CVE-2020-29583: Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found…

critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
KEVITWEXPLOIT
CISA Known Exploited Vulnerabilitydue 2022-05-03
Exploited in the wild
Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
zyxelatp100_firmware
zyxelatp100w_firmware
zyxelatp200_firmware
zyxelatp500_firmware
zyxelatp700_firmware
zyxelatp800_firmware
zyxelusg1100_firmware
zyxelusg110_firmware
zyxelusg1900_firmware
zyxelusg20-vpn_firmware
zyxelusg20w-vpn_firmware
zyxelusg210_firmware
zyxelusg2200_firmware
zyxelusg310_firmware
zyxelusg40_firmware
zyxelusg40w_firmware
zyxelusg60_firmware
zyxelusg60w_firmware
zyxelusg_flex_100_firmware
zyxelusg_flex_100w_firmware
zyxelusg_flex_200_firmware
zyxelusg_flex_500_firmware
zyxelusg_flex_700_firmware
zyxelvpn1000_firmware
zyxelvpn100_firmware

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck9.8CRITICAL
cisa9.8CRITICAL