Skip to main content

Zyxel Releases Security Update for LTE Indoor Router

Zyxel update addresses a pre-configured password vulnerability

Report a cyber attack: call 0300 303 5222 or email carecert@nhsdigital.nhs.uk

Summary

Zyxel update addresses a pre-configured password vulnerability


Affected platforms

The following platforms are known to be affected:

Threat details

Introduction

Zyxel has released a security update for a vulnerability, tracked as CVE-2022-40602, which affects LTE indoor routers. The vulnerability could allow a remote attacker to access the device using an improper pre-configured password if the remote administration feature has been enabled by an authenticated administrator.


Remediation advice

Affected organisations are encouraged to review Zyxel's security advisory and apply relevant updates and mitigations.
 



Last edited: 23 November 2022 1:33 pm