Ethical Hacking News
A critical vulnerability in Zyxel routers has exposed devices to remote attacks, highlighting the need for vigilance and proactive measures to protect against cyber threats. Users are urged to update affected devices with patched firmware versions as soon as possible.
A critical vulnerability (CVE-2025-13942) has been discovered in Zyxel routers, exposing devices to remote attacks. The flaw is a command injection bug in the UPnP feature of certain Zyxel devices. A remote attacker can execute operating system commands by sending specially crafted UPnP SOAP requests. Patched firmware versions will be released for affected models in March 2026. Other vulnerabilities (CVE-2025-11847, CVE-2025-11848, and CVE-2026-1459) have been identified affecting multiple Zyxel devices. Users are urged to update their router's firmware with patched versions as soon as possible. Governments and regulatory bodies must implement strict guidelines for software updates and improve incident response mechanisms.
Cybersecurity experts have sounded the alarm on a critical vulnerability affecting Zyxel routers, exposing devices to remote attacks. The flaw, tracked as CVE-2025-13942 (CVSS score of 9.8), was identified by researcher VÒctor Fresco (@hacefresko) and is a command injection bug in the UPnP feature of certain Zyxel CPEs, Fiber ONTs, and wireless extenders.
According to the vulnerability advisory published by the vendor, a remote attacker can execute operating system (OS) commands on an affected device by sending specially crafted UPnP SOAP requests. The attack requires both WAN access and the vulnerable UPnP function to be enabled, as WAN access is disabled by default on these devices.
The impact of this flaw extends beyond individual users, as it can also affect businesses and organizations that rely heavily on Zyxel routers for their internet connectivity. With the growing reliance on remote work and online services, the consequences of a successful attack can be far-reaching and devastating.
Zyxel has acknowledged the vulnerability and is working to patch affected router models. The Taiwanese manufacturer has stated that patched firmware versions will be released for all impacted models in March 2026.
Meanwhile, other vulnerabilities have been identified affecting multiple Zyxel CPEs, Fiber ONTs, security routers, and wireless extenders. CVE-2025-11847 and CVE-2025-11848 are null pointer dereference flaws in IP settings and Wake-on-LAN CGI components that allow authenticated administrators to trigger a denial-of-service via crafted HTTP requests.
CVE-2026-1459, reported by Watchful IP, is a post-authentication command injection bug in log download and TR-369 certificate functions, enabling OS command execution. These vulnerabilities highlight the need for vigilance and proactive measures to protect against cyber threats.
As users, it is essential to stay informed about potential security flaws and take immediate action to update affected devices with patched firmware versions. Users are urged to check their router's compatibility with the patches and apply them as soon as possible.
In addition to individual actions, governments and regulatory bodies must also take a proactive stance in addressing cybersecurity concerns. This includes implementing strict guidelines for software updates, improving incident response mechanisms, and providing resources for education and awareness campaigns.
The recent discovery of this critical Zyxel router flaw serves as a stark reminder of the ever-evolving nature of cyber threats. As technology advances, so too must our defenses against these threats. By working together, we can build a safer digital landscape and protect ourselves from the devastating consequences of cyber attacks.
Related Information:
https://www.ethicalhackingnews.com/articles/Critical-Zyxel-Router-Flaw-Exposes-Devices-to-Remote-Attacks-A-Growing-Concern-for-Home-and-Business-Users-ehn.shtml
https://securityaffairs.com/188501/security/critical-zyxel-router-flaw-exposed-devices-to-remote-attacks.html
https://www.bleepingcomputer.com/news/security/zyxel-warns-of-critical-rce-flaw-affecting-over-a-dozen-routers/
https://nvd.nist.gov/vuln/detail/CVE-2025-13942
https://www.cvedetails.com/cve/CVE-2025-13942/
https://nvd.nist.gov/vuln/detail/CVE-2025-11847
https://www.cvedetails.com/cve/CVE-2025-11847/
https://nvd.nist.gov/vuln/detail/CVE-2025-11848
https://www.cvedetails.com/cve/CVE-2025-11848/
https://nvd.nist.gov/vuln/detail/CVE-2026-1459
https://www.cvedetails.com/cve/CVE-2026-1459/
Published: Wed Feb 25 16:33:17 2026 by llama3.2 3B Q4_K_M
