The U.S. CISA, on Monday added two recently uncovered faults in Zyxel firewalls to its Known Exploited Vulnerabilities (KEV) catalog, on the basis of active exploitation as evidence.
The vulnerabilities identified as CVE-2023-33009 and CVE-2023-33010 refer to buffer overflow vulnerabilities that have the potential to allow unauthorized attackers to trigger a denial-of-service (DoS) situation and execute remote code. Zyxel, in a recent advisory released last week, is strongly advising customers to disable HTTP/HTTPS services from the wide area network (WAN) unless it is absolutely necessary.
Read More: Zyxel Firewalls Under Attack! Urgent Patching Required
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.