Bleeping Computer

Hackers exploit critical unpatched flaw in Zyxel CPE devices

Hackers are exploiting a critical command injection vulnerability in Zyxel CPE Series devices that is currently tracked as CVE-2024-40891 and remains unpatched since last July. The vulnerability ...
Dark Reading

Unpatched Zyxel CPE Zero-Day Pummeled by Cyberattackers

A command-injection vulnerability in Zyxel CPE Series devices is being targeted by threat actors, and there's no patch available. The bug, tracked as CVE-2024-40891, was first discovered by VulnCheck, ...
Hosted on MSN

Zyxel says it won’t patch security flaws in its old routers

Security researchers warn of two Zyxel flaws being abused in the wild The manufacturer confirmed the findings but said the devices are no longer supported Users are advised to migrate to newer models ...
Infosecurity-magazine.com

NVD Revamps Operations as Vulnerability Reporting Surges

After a tumultuous year marked by internal turmoil and a mounting vulnerability backlog, the National Vulnerability Database (NVD) team within the US National Institute of Standards and Technology ...
Infosecurity-magazine.com

NIST Confusion Continues as Cyber Pros Complain CVE Uploads Stalled

A recent rise in software vulnerability exploits has come as the US National Vulnerability Database (NVD), the world’s most comprehensive vulnerability database, experiences its most significant ...