Vulnerabilities

Zyxel Patches Critical Vulnerability in Many Device Models

The issue impacts the UPnP function of multiple device models and could be exploited for remote code execution.

Router vulnerabilities

Networking provider Zyxel this week released patches for multiple vulnerabilities across dozens of device models, including a critical flaw leading to remote code execution.

The critical-severity bug, tracked as CVE-2025-13942 (CVSS score of 9.8), is described as a command injection issue affecting the UPnP feature of 18 routers, ONTs, and wireless extenders.

An attacker could exploit the flaw via crafted UPnP SOAP requests to execute OS commands on a vulnerable device, Zyxel explains in its advisory.

“It is important to note that WAN access is disabled by default on these devices, and the attack can be carried out remotely only if both WAN access and the vulnerable UPnP function have been enabled,” the company notes.

The networking provider’s fresh round of security updates also resolves CVE-2025-13943 and CVE-2026-1459, two high-severity command injection defects.

Impacting the log file download function and the TR-369 certificate download CGI program of specific router firmware versions, the two vulnerabilities could allow an authenticated attacker to execute OS commands.

Advertisement. Scroll to continue reading.

Additionally, Zyxel released fixes for four null pointer dereference vulnerabilities that could be exploited by attackers with administrator privileges to cause denial-of-service (DoS) conditions.

Affecting various endpoints of the vulnerable products, these flaws can be exploited via crafted HTTP requests if WAN access is enabled and the attacker possesses compromised user credentials.

Zyxel has published a list of impacted devices, saying that firmware updates are available for all of them. The company makes no mention of any of these vulnerabilities being exploited in the wild, but threat actors are known to have targeted Zyxel bugs in attacks.

Related: Cisco Patches Catalyst SD-WAN Zero-Day Exploited by Highly Sophisticated Hackers

Related: Zyxel Firewall Vulnerability Again in Attacker Crosshairs

Related: Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days

Related: Nvidia, Zoom, Zyxel Patch High-Severity Vulnerabilities

Related Content

Vulnerabilities

Unauthenticated attackers could obtain the broker's confidential OAuth client secret, allowing them to take control of the broker.

Email Security

The flaw results in malicious code embedded in crafted emails being executed when the emails are opened.

Vulnerabilities

The company notified customers to manually shut down their servers while it is investigating a credible threat.

Vulnerabilities

Buffer overflow, DoS, command injection, SSRF, authentication bypass, and other types of vulnerabilities have been found in PAN-OS software.

Vulnerabilities

The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.

Artificial Intelligence

Wiz has disclosed the details of a new AI coding assistant attack method it has dubbed GhostApproval.

Vulnerabilities

The security refresh resolves 13 use-after-free bugs, including two critical-severity flaws found by Google.

Vulnerabilities

Tracked as CVE-2026-11405, the vulnerability allows unauthenticated attackers to access a device's web management interface.

Copyright © 2026 SecurityWeek ®, a Wired Business Media Publication. All Rights Reserved.

Exit mobile version