Summary: Zyxel has issued a critical advisory regarding a newly discovered security vulnerability, CVE-2024-12398, affecting various access points and security routers. The vulnerability, with a CVSS score of 8.8, allows authenticated users to escalate privileges, potentially compromising device security.
Threat Actor: Unknown | unknown
Victim: Zyxel Users | zyxel users
Key Point :
- Vulnerability CVE-2024-12398 allows privilege escalation through the web management interface.
- Affected products include popular models like NWA50AX and WAC500.
- Users are urged to apply patches immediately to mitigate risks.
- Updated firmware versions are available on Zyxelโs support page.
- Failure to patch could lead to unauthorized access and network compromises.