Zyxel Patches Critical Vulnerability in NAS Firmware By Orbit Brain September 8, 2022 0 194 views Residence › Endpoint SafetyZyxel Patches Crucial Vulnerability in NAS FirmwareBy Ionut Arghire on September 07, 2022TweetNetworking options supplier Zyxel has launched patches for a critical-severity vulnerability impacting the firmware of a number of community hooked up storage (NAS) machine fashions.The safety defect, tracked as CVE-2022-34747, carries a CVSS rating of 9.8/10 and is publicly documented as a format string vulnerability impacting Zyxel NAS326 firmware variations previous to V5.21(AAZF.12)C0.An attacker may exploit the vulnerability by sending specifically crafted UDP packets to the affected merchandise. Profitable exploitation of the bug may enable an attacker to execute arbitrary code on the impacted machine, the corporate stated in an advisory.“A format string vulnerability was present in a selected binary of Zyxel NAS merchandise that would enable an attacker to attain unauthorized distant code execution through a crafted UDP packet,” the corporate added.[ READ: QNAP Warns of New ‘Deadbolt’ Ransomware Assaults Focusing on NAS Customers ]Zyxel says its investigationhas recognized solely three NAS fashions which are affected and that are inside their assist lifetime.The seller silently patched the vulnerability in mid-August with firmware updates for NAS326, NAS540, and NAS542 machine fashions, however delayed publication of the flaw particulars till this week.Zyxel credited safety researcher Shaposhnikov Ilya with reporting the vulnerability.Zyxel’s advisory was printed solely days after QNAP warned of a brand new wave of Deadbolt ransomware assaults focusing on its NAS customers.NAS gadgets – that are usually used for storing giant quantities of knowledge – are sometimes focused in ransomware assaults and distant code execution bugs in them may simply result in full machine compromise.Beforehand, Zyxel NAD merchandise had been focused by a variant of the Mirai botnet, in assaults that exploited one other critical-severity vulnerability resulting in distant code execution.Associated: Particulars Launched for Just lately Patched Zyxel Firewall VulnsAssociated: QNAP Warns of New ‘Deadbolt’ Ransomware Assaults Focusing on NAS CustomersAssociated: Zyxel Patches Zero-Day Flaw in Community Storage MerchandiseGet the Day by day Briefing Most LatestMost LearnCymulate Closes $70M Collection D Funding SphericalZyxel Patches Crucial Vulnerability in NAS FirmwareGoogle Particulars Latest Ukraine CyberattacksCISO Conversations: U.S. Marine Corps, SAIC Safety Leaders on Organizational VariationsAlbania Cuts Diplomatic Ties With Iran Over July CyberattackUS Companies Warn of ‘Vice Society’ Ransomware Gang Focusing on Schooling SectorThe Benefits of Menace Intelligence for Combating FraudAuthorities Seize On-line Market for Stolen CredentialsIsraeli Defence Minister’s Cleaner Sentenced for Spying TrySupply Code of New ‘CodeRAT’ Backdoor Revealed On-lineSearching for Malware in All of the Unsuitable Locations?First Step For The Web’s subsequent 25 years: Including Safety to the DNSTattle Story: What Your Pc Says About YouBe in a Place to Act By Cyber Situational ConsciousnessReport Reveals Closely Regulated Industries Letting Social Networking Apps Run Rampant2010, A Nice 12 months To Be a Scammer.Do not Let DNS be Your Single Level of FailureLearn how to Establish Malware in a BlinkDefining and Debating Cyber WarfareThe 5 A’s that Make Cybercrime so EngagingLearn how to Defend In opposition to DDoS AssaultsSafety Budgets Not in Line with ThreatsAnycast – Three Causes Why Your DNS Community Ought to Use ItThe Evolution of the Prolonged Enterprise: Safety Methods for Ahead Considering OrganizationsUtilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous EnterpriseShare this:FacebookXPrintEmailLinkedInRedditTwitterTumblrPinterestTelegramWhatsApp bios CVE-2022-34747 firmware firmware update hardware NAS patch remote code execution security bug security flaw vulnerability Zyxel Orbit Brainhttps://orbitbrain.com/ Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy waysand much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.
Atlassian Patches Servlet Filter Vulnerabilities Impacting Multiple ProductsIntroducing the Cyber Security News Atlassian Patches Servlet Filter Vulnerabilities Impacting Multiple Products.... July 22, 2022 Cyber Security News
Normalyze Announces $22 Million for DSPM TechnologyIntroducing the Cyber Security News Normalyze Announces $22 Million for DSPM Technology.... June 29, 2022 Cyber Security News
US Cybersecurity Agency CISA to Open London OfficeIntroducing the Cyber Security News US Cybersecurity Agency CISA to Open London Office.... July 19, 2022 Cyber Security News
Jury Finds Ex-Twitter Worker Spied for Saudi RoyalsIntroducing the Cyber Security News Jury Finds Ex-Twitter Worker Spied for Saudi Royals.... August 10, 2022 Cyber Security News
In-the-Wild Exploitation of Recent ManageEngine Vulnerability CommencesIntroducing the Cyber Security News In-the-Wild Exploitation of Recent ManageEngine Vulnerability Commences.... January 21, 2023 Cyber Security News
New TSA Directive Aims to Further Enhance Railway CybersecurityIntroducing the Cyber Security News New TSA Directive Aims to Further Enhance Railway Cybersecurity.... October 20, 2022 Cyber Security News
Pantera Capital Plans $250M Solana (SOL) Buy, Analyst Predicts Record Rally Toward $1000March 8, 2024 75