4 matches found
CVE-2020-29583
Firmware version 4.60 of Zyxel USG devices contains an undocumented account zyfwp with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges...
CVE-2020-29583
creationtimestamp| type| source ---|---|--- 2020-12-23 00:53:54+00:00| seen| https://t.me/cibsecurity/21192 2021-01-01 16:35:18+00:00| seen| https://t.me/cKure/3549 2021-01-01 16:38:04+00:00| seen| https://t.me/cKure/3550 2021-01-04 17:21:00+00:00| seen|...
CVE-2020-29583
CVE-2020-29583 (Zyxel hard-coded credentials) The Zyxel vulnerability concerns an undocumented user account, “zyfwp,” with an unchangeable password found in the firmware of multiple Zyxel devices. The account can grant admin access via SSH or the web interface. Affected devices include Zyxel USG/...
SSH Brute Force Logins With Default Credentials Reporting
It was possible to login into the remote SSH server using default credentials. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...