Summary: Cybersecurity researchers are alerting users about a critical zero-day vulnerability (CVE-2024-40891) affecting Zyxel CPE Series devices, which allows attackers to execute arbitrary commands. This vulnerability has been actively exploited, with over 1,500 vulnerable devices identified online. Users are recommended to restrict access and monitor traffic to protect against potential attacks.
Affected: Zyxel CPE Series devices
Keypoints :
- Vulnerability CVE-2024-40891 enables command injection leading to system compromise.
- Active exploitation attempts have been observed from numerous IP addresses, mainly in Taiwan.
- Users are urged to filter HTTP traffic and limit access to management interfaces to trusted IPs.
Source: https://thehackernews.com/2025/01/zyxel-cpe-devices-face-active.html