Zyxel says its firewall and VPN devices have critical security flaws, so patch now



Zyxel recently discovered two critical vulnerabilities in some of its networking gear and has urged users to apply the patch immediately. 

Both vulnerabilities are buffer overflows, allowing for denial-of-service (DoS) attacks, as well as remote code execution (RCE), and both were found in some of Zyxel’s firewall and VPN products, and carry a severity score of 9.8 (critical). They are now being tracked as CVE-2023-33009, and CVE-2023-33010.



Source link